I say tag away !
Michael Bell wrote:
Chris Covell wrote:
Guys, when is openca-0.9.2.2 being tagged on CVS ?
Cool question, if there are no problems at all then I can tag it on
monday. So deadline for changes or showstopper notices is monday 9.00 UTC.
Michael
Hi,
I've put together a pure perl X.509 cert parser based on Norbert Klasen's original x509decode
script which he contributed to Convert::ASN1 /contrib in 2002.
The parser is an OO perl module with 30 methods currently. It provides access
methods such as:
$cert->subject_email
$cert->not_before
Chris Covell wrote:
Guys, when is openca-0.9.2.2 being tagged on CVS ?
Cool question, if there are no problems at all then I can tag it on
monday. So deadline for changes or showstopper notices is monday 9.00 UTC.
Michael
--
___
Michael
Guys, when is openca-0.9.2.2 being tagged on CVS ?
Chris...
---
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start readi
Hi,
since 2002, we did some improvements to Norberts script, which he BTW
wrote as our employee, e.g. we included some more extensions and we are
currently working on a similiar script for CRLs. If you are interested,
we could see to combine efforts.
Anyway I am very interested in your work an
Hi Mike,
Anybody interested in testing and possibly using it in OpenCA?
Do you have any performance test results? OpenCA is sometimes used for
large infrastructures. So we have to take care about performance.
(Therefore we don't use Parse::ReqDescent for exmaple).
Today we use a direct C-Interf
Michael Bell wrote:
openca: user root with group root
httpd: special openca user (this is the owner of the socket and daemon)
i just gave this a try, there are some file-permission problems to keep
checked if going this way:
the conf files in etc/servers are only readable by owner and group
this
Hi,
consider an incoming PKCS#10 request (doesn't matter if via web frontend
or via SCEP).
This request can contain one or more subjectAltName attributes.
OpenCA currently silently drops the SubjectAltNames from the
request. Depending on CA policy it may be desired to retain
the SubjectAltName(s)
On Fri, Mar 04, 2005 at 09:10:30AM +0100, Michael Bell wrote:
> Date: Fri, 04 Mar 2005 09:10:30 +0100
> From: Michael Bell <[EMAIL PROTECTED]>
> Subject: Re: [OpenCA-Devel] httpd-user vs openca-user
>
> Alexei Chetroi wrote:
>
[snip]
> > Well, that changes things a bit. So to clarify once again
Alexei Chetroi wrote:
This is wrong and a security risk. Perhaps some comments about the user
and group terms:
openca - this is used for stuff which may not be writeable by the daemon
or http server
httpd - this is used for stuff which should be writeable for the daemon
today it is not n
10 matches
Mail list logo
