I did some research on that and also contacted the local CA operators. They told me that ns-cert-type is old,propriety and depracated and does not significantly add to security. Here are some references:
http://osdir.com/ml/java.ejbca.devel/2005-11/msg00003.html http://openvpn.net/archive/openvpn-users/2007-03/msg00062.html http://readlist.com/lists/postfix.org/postfix-users/12/64401.html http://emperor.canarie.ca/pipermail/tagpma-general/2007-January/001326.html In any case, this certificate extension is never gonna be supported in several educational large PKI infrastructures that I (and serveral other academic users as well) employ. So lack of this feature will mean loss of a large audience for the networkmanager tool. Can we have a fix please ?:) -- ============================================================================ Dimitris Zilaskos Department of Physics @ Aristotle University of Thessaloniki , Greece PGP key : http://tassadar.physics.auth.gr/~dzila/pgp_public_key.asc http://egnatia.ee.auth.gr/~dzila/pgp_public_key.asc MD5sum : de2bd8f73d545f0e4caf3096894ad83f pgp_public_key.asc ============================================================================ On Thu, 22 May 2008, Vasiliy G Tolstov wrote: > On Thu, 2008-05-22 at 14:20 +0300, Dimitris Zilaskos wrote: > >> Hi, >> >> I am using Fedora Core 9 and I have been bitten by this issue: >> >> http://www.mail-archive.com/networkmanager-list@gnome.org/msg09258.html >> >> Is there any other why, apart from changing the source code, to bypass it? >> Maybe a feature to be added allowing changes of advanced openvpn settings? >> >> TIA >> > > > Greate feature, but may break security... > > > -- > Vasiliy G Tolstov > http://selfip.ru > > > _______________________________________________ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list