Hi, Am Mittwoch, 18. Oktober 2006 12:00 schrieb Malte Timmermann: > We think that most people on non-Windows platforms will have their > personal certificate in some Mozilla profile anyway.
Not true. I had to extra set up to Mozilla and import a test-generated certificate to test the XML Sec stuff... Many people will have it somewhere and just use openssl. > In your scenario, if we used OpenSSL, how would this, as well as (CA) > certificate and CRL management work? > What is the benefit in replacing an existing Mozilla dependency with a > new OpenSSL dependency? In removing the bogus dependency on Mozilla since not everyone is using Mozilla stuff for browsing or mail, consequently also not for certificates. And, well, you could make it choosable.. libxmlsec afais already also supports openssl. We should try to get rid of the Mozilla crap (remember: we still are shipping a unmaintained, old, unsupported, security-buggy version), also for LDAP access, but that's an other story... Regards, Rene -- .''`. René Engelhard -- Debian GNU/Linux Developer : :' : http://www.debian.org | http://people.debian.org/~rene/ `. `' [EMAIL PROTECTED] | GnuPG-Key ID: 248AEB73 `- Fingerprint: 41FA F208 28D4 7CA5 19BB 7AD9 F859 90B0 248A EB73 --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
