Hello,
A normat certificate user never go to this menu, but maybe developers does...
(ad remove crls- to test your application works well with revoked state or not,
etc...
my opinion, remove it, but ask the right people too, please. :)
Üdvözlettel/Regards,
Varga Viktor
Üzemeltetési és
Hello,
Because the subject is "how to use", maybe my answer can help you too, but i
see your questions are not releated to the subject.
The best usage of the Mozzilla cert store I found in the wild was the
openoffice certificate handling on linux. they simply just use the certificates
stored
At us, none of them used.
We are dropping the ATTRIBUTES, the content of certificate relies on the
defined certificate profile.
Üdvözlettel/Regards,
Varga Viktor
Üzemeltetési és Vevőszolgálati Vezető
IT Service and Customers Service Executive
Netlock Kft.
> -Original Mess
Ok. :)
Now i got some opinion back, that i have right with the deadlines, but
of-course, its not an option to switch on a function like this int he Firefox
against the CAs.
Üdvözlettel/Regards,
Varga Viktor
Üzemeltetési és Vevőszolgálati Vezető
IT Service and Customers Service Executive
Maybe answer was not for me,
but i am subscribed. :)
Üdvözlettel:
Varga Viktor
üzemeltetési és vevőszolgálati vezető
Netlock Kft.
> -Original Message-
> From: dev-tech-crypto-bounces+varga_v=netlock...@lists.mozilla.org
> [mailto:dev-tech-crypto-bounces+varga_
> > Will this one day reach the PC? No, you will still use the phone as
> the token
> > (and token selector/executor) while the PC crypto will be bypassed.
> NFC
> > does the connection together with Wi-Fi.
>
>
> Hmmm! Interesting thoughts.
There is a total different approach too:
1. store th
> IMO putting OCSP or CRLs in public SSL certificates was never a
> particularly good idea because the only likely case for a revocation
> is when a CA fails to validate a customer. That has happened
> but not often enough to motivate the building of new infrastructure.
Dont forget the sale of t
Yes, the MS started the rollover process in its root program, and they follow
the NIST recommendations.
regards,
Varga Viktor
üzemeltetési és vevőszolgálati vezető
Netlock Kft.
-Original Message-
From: dev-tech-crypto-bounces+varga_v=netlock...@lists.mozilla.org
[mailto:dev-tech
>FF 3.5.0 and FF 3.5.1 do not support fetching of certs from AIA extension
>URIs, nor fetching of CRLs from CDP extension URIs. The code to fetch
>certs from AIA URIs is present, but Firefox has not yet put it into use.
What was the cause to disable it??
>The code to do CRL fetching is not yet
Thank you, this info lost somewhere for me.
Now already subscribed. :D
üdvözlettel/best regards:
Varga Viktor
rendszerüzemeltetési és vevőszolgálati vezető
Netlock Kft.
-Original Message-
From: dev-tech-crypto-bounces+varga_v=netlock...@lists.mozilla.org
[mailto:dev-tech-crypto
The collection of info is excellent.
Is it possible to get our rollover certificates into this update? :D
I didn't see too much root public discusion nowadays.
üdvözlettel/best regards:
Varga Viktor
rendszerüzemeltetési és vevőszolgálati vezető
Netlock Kft.
-Original Message-
attached picture uploaded to
http://www.kepfeltoltes.hu/view/090319/asn1parse_www.kepfeltoltes.hu_.jpg
üdvözlettel/best regards:
Varga Viktor
rendszerüzemeltetési és vevőszolgálati vezető
Netlock Kft.
From: dev-tech-crypto-bounces+varga_v=netlock...@lists.mozilla.org
[mailto:dev-tech-crypto
> Will be then the multiple OCSP inclusion? (This time ok, the software can
> only check the first, but later the others too.)
Yes, including multiples of these things won't hurt. Firefox won't
crash or refuse to connect because multiple URIs for these things exist.
It will just ignore som
I agree completely. The RFC does not exclude it. It's not a bad idea.
> Does the Firefox handle it?
Alas, no. I believe it always uses the first one it finds in the cert,
and only that.
Will be then the multiple OCSP inclusion?
(This time ok, the software can only check the first, but later
Dear readers,
Previously i drop a mail about three question, and I got answer ont he OCSP
multiple request quiestion.
Other were not answered, so I cutted one part of it out, and posted it again.
I would like to know, how the Firefox (NSS) handle this case:
Multiple caIssuers and OCSP in AIA f
Thank you, now i know that Firefox doesnt want to create a request like this.
üdvözlettel/best regards:
Varga Viktor
rendszerüzemeltetési és vevőszolgálati vezető
Netlock Kft.
-Original Message-
From: dev-tech-crypto-bounces+varga_v=netlock...@lists.mozilla.org
[mailto:dev-tech-crypto
As I see, the correct way to handel this the malformed reply.
Thanks.
Comments on my other questions?
üdvözlettel/best regards:
Varga Viktor
rendszerüzemeltetési és vevőszolgálati vezető
Netlock Kft.
-Original Message-
From: dev-tech-crypto-bounces+varga_v=netlock
bject
Alternative Name field of the certificate.
It is possible to these request have FQDN for external, and internal names
without valid FQDN, for internal access. Is this UCC profile in under this
üdvözlettel/best regards:
Varga Viktor
rendszerüzemeltetési és vevőszolgálati vezető
Netloc
18 matches
Mail list logo
