[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: "known in advance" public key authentication?
From: |
Nikos Mavrogiannopoulos |
Subject: |
Re: "known in advance" public key authentication? |
Date: |
Sun, 18 Nov 2012 20:28:37 +0100 |
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:10.0.10) Gecko/20121027 Icedove/10.0.10 |
On 11/15/2012 10:12 PM, Florian Weimer wrote:
> * Nikos Mavrogiannopoulos:
>
>> On 11/07/2012 10:52 PM, Florian Weimer wrote:
>>
>>
>>> Make sure your certificates are valid X.509v3. GNUTLS is extremely
>>> forgiving, and if you've got a widely deployed certificate which
>>> cannot be used with Java (for instance), this can be annoying.
>
>> What do you mean by valid X.509v3? I suppose even the authors of X.509
>> wouldn't even know what that means :) Anything we could improve?
>
> I managed to create a version 1 certificate with extensions. 8-/
Was that using certtool or by the API? If it is the former then it is
indeed a bug, but for the latter I don't know if it's worth the
complexity of the checks.
regards,
Nikos
- Re: "known in advance" public key authentication?, (continued)
- Re: "known in advance" public key authentication?, Ivan Shmakov, 2012/11/11
- Re: "known in advance" public key authentication?, Nikos Mavrogiannopoulos, 2012/11/13
- Re: "known in advance" public key authentication?, Ivan Shmakov, 2012/11/13
- Re: "known in advance" public key authentication?, Nikos Mavrogiannopoulos, 2012/11/14
- Re: "known in advance" public key authentication?, Ivan Shmakov, 2012/11/19
Re: "known in advance" public key authentication?, Ivan Shmakov, 2012/11/07
Re: "known in advance" public key authentication?, Ilari Liusvaara, 2012/11/07
Re: "known in advance" public key authentication?, Florian Weimer, 2012/11/07
Re: "known in advance" public key authentication?, Ivan Shmakov, 2012/11/07