On Nov 20, 2010, at 12:39 PM, Rob Lemaster wrote: > Thanks for the link Issac. If this is already in Apache, why isn't > everyone using it?
Because key management is just too freaking hard, and too much of a management and support burden. For God's sake, if we can't even get the Apache developer community to use PGP without handholding, how would you expect the general public to handle this tech? S. > On Sat, Nov 20, 2010 at 12:32 PM, Issac Goldstand <mar...@beamartyr.net> > wrote: > >> Nope, you have full x509 based authentication out-of-the-box. See >> http://httpd.apache.org/docs/2.2/ssl/ssl_howto.html#allclients >> >> Issac >> > > -- Sander Temme scte...@apache.org PGP FP: FC5A 6FC6 2E25 2DFD 8007 EE23 9BB8 63B0 F51B B88A View my availability: http://tungle.me/sctemme