Michal Prochazka wrote:
IMHO, it is very breakable script: it compare only strings (issuer name, subject, etc), which can be forged easily. IMHO, we need to check sha1/md5 signatures of CA certificates, not strings.I'm open for every remark and enhancement of this patch.
-- // Lev Serebryakov- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
