On 02/04/2014 09:01 AM, Mark H. Wood wrote: > Having said that, you might look at how OpenSSH has included X.509 > certificates in its operation. There is precedent for something like > what you suggest.
fwiw, the answer here is "they haven't". Roumen Petrov's X.509 patches remain outside of OpenSSH mainline, and there seems to be very little chance for upstream adoption. Some distributions may include those patches, but not all of them, and upstream has held the line against them, even implementing their own certificate format instead of adopting X.509. --dkg
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users