On Jul 27, 2:17 am, Nelson Bolyard <[EMAIL PROTECTED]>
wrote:
> Daniel Stenberg wrote, On 2008-07-26 13:45:
>
> > As a user of OpenSSL, NSS, yassl and GnuTLS I can certainly agree that
> > GnuTLS has flaws in its API but NSS most certainly also has flaws as well
> > _and_ notable missing features t
> I forgot to mention: guessing is good, verifying is better. I'll bring
> up this question on the syslog WG mailing list.
I got the answer right from the source:
http://www.ietf.org/mail-archive/web/syslog/current/msg01915.html
Rainer
___
dev-tech-cry
On May 23, 8:34 am, Rainer Gerhards <[EMAIL PROTECTED]> wrote:
> On May 20, 10:38 pm, Badra <[EMAIL PROTECTED]> wrote:
> [snip]
>
> > Fingerprint-based is not secure within TLS, not specified anywhere, and it
> > is an hack.
>
> Well, it actually is (somewha
On May 20, 10:38 pm, Badra <[EMAIL PROTECTED]> wrote:
[snip]
> Fingerprint-based is not secure within TLS, not specified anywhere, and it
> is an hack.
Well, it actually is (somewhat), right there in the PSK RFC, section
1.1:
If the main goal is to avoid Public-Key Infrastructures (PKIs),
Hi Nelson,
many thanks for your very useful reply. Comments inline...
On May 22, 12:41 am, Nelson B Bolyard <[EMAIL PROTECTED]> wrote:
> Rainer Gerhards wrote,
>
> >>> [snip] I would like to authenticate
> >>> remote peers via custom authentication laye
On May 23, 12:39 am, Julien R Pierre - Sun Microsystems
<[EMAIL PROTECTED]> wrote:
> Nelson,
>
> Nelson B Bolyard wrote:
>
> >>> Right now there is no such callback available in NSS' libssl to do what
> >>> you want.
>
> > Maybe I misunderstand the request, but I believe that libSSL offers exactly
Hi Julien,
thanks for your reply, much appreciated. Coments inline below...
On May 20, 10:18 pm, Julien R Pierre - Sun Microsystems
<[EMAIL PROTECTED]> wrote:
> Rainer,
> > my apologies for not reading through all the docs. I have a hopefully
> > quick question and would like some short feedback
Thank for the feedback, much appreciated :)
On Apr 7, 7:27 pm, "Wan-Teh Chang" <[EMAIL PROTECTED]> wrote:
> Hi Rainer,
>
> NSPR threads are just POSIX threads with NSPR thread IDs.
> NSPR assigns NSPR thread IDs on demand to POSIX threads
> not created by NSPR. So your POSIX threads can coexist
>
Hi,
thanks for your reply. It's actually good news for me. Some thoughts
inline below...
On Apr 5, 3:12 am, Nelson B Bolyard <[EMAIL PROTECTED]> wrote:
> NSS depends on NSPR, and attempting to divorce NSS from NSPR is way more
> work than (I think) you want to attempt to do. (Quite a few have t
Hi there,
I hope I don't bother you too much with a very basic question. I am
the author or rsyslog - http://www.rsyslog.com - a syslogd replacement
aimed, among others, at security. I am about to implement native TLS
support for it. I was referred to either NSS or GnuTLS and have so far
settled o
10 matches
Mail list logo