Am Freitag 15 Januar 2010 23:11:54 schrieb Alon Bar-Lev:
> I see.
>
> I can confirm that on my test environment everything is working
> correctly if I put SSLVerifyClient require at server wide.
not an option - trac login etc.
but my guess is: your ssl library doesn't support regonitation.
(disa
I see.
I can confirm that on my test environment everything is working
correctly if I put SSLVerifyClient require at server wide.
So we can solve this by using two addresses for server, one for svn
with require and the other for trac. Or we can use a different port
for svn.
On Fri, Jan 15, 2010
Am Freitag 15 Januar 2010 00:38:48 schrieb Peter Stuge:
> It's not enough on it's own. I have:
>
> [notification]
> smtp_enabled = true
> smtp_from = t...@...
> smtp_server = localhost
I have those too.
> [components]
> acct_mgr.api = enabled
> acct_mgr.web_ui.accountmodule = enabled
> acct_mgr.
Am Freitag 15 Januar 2010 06:29:06 schrieb Alon Bar-Lev:
> Why you need renegotiation? I will try to setup apache at my machine.
because of our configuration.
server wide:
SSLVerifyClient optional
and in /svn and certain actions only:
SSLVerifyClient require
Alon Bar-Lev wrote:
> Why you need renegotiation?
To also support access without client cert.
//Peter
___
opensc-devel mailing list
opensc-devel@lists.opensc-project.org
http://www.opensc-project.org/mailman/listinfo/opensc-devel
On Thu, Jan 14, 2010 at 11:50 PM, Andreas Jellinghaus
wrote:
> Am Donnerstag 14 Januar 2010 20:38:31 schrieb Alon Bar-Lev:
>> Looking at wireshark, for some strange reason the connection starts
>> with TLSv1 and drops to SSLv3.
>> Any reason for this in apache configuration?
>
> AFAIK: sure, reneg
Andreas Jellinghaus wrote:
> https
..
> last time I checked subversion was a quite complex code using
> several layers like apr, neon, openssl/gnutls/... and I couldn't
> figure out how smart card support could be added.
https is webdav, which is implemented by neon or serf. Apparently
serf will b
Am Donnerstag 14 Januar 2010 20:38:31 schrieb Alon Bar-Lev:
> Looking at wireshark, for some strange reason the connection starts
> with TLSv1 and drops to SSLv3.
> Any reason for this in apache configuration?
AFAIK: sure, renegotiation. tls doesn't have that (but now there is a draft
for tls 1.2
Am Donnerstag 14 Januar 2010 20:23:21 schrieb Martin Paljak:
> Maybe something like this:
>
> http://www.opensc-project.org/test/newticket
>
> ?
nice. maybe change the text a bit, for example:
Please leave an email address in the description,
so we can contact you, if we need further information
On Thu, Jan 14, 2010 at 5:15 PM, Martin Paljak wrote:
>
> On 14.01.2010, at 16:52, Andreas Jellinghaus wrote:
>> in the subversion log file (CHANGES in trunk) I can't see anything
>> directly related to client certificates or renegotiation...
>> but maybe the one-line summary text is to short to k
On 14.01.2010, at 20:01, Andreas Jellinghaus wrote:
>
>>> Bold text "If you want the issue fixed, leave an e-mail address or
>>> check back here" added to the new ticket screen would help remedy
>>> this situation.
>>
>> Also a good idea.
>
> and how can I do that? manually edit the trac source
On 14.01.2010, at 20:01, Andreas Jellinghaus wrote:
>>> Bold text "If you want the issue fixed, leave an e-mail address or
>>> check back here" added to the new ticket screen would help remedy
>>> this situation.
>>
>> Also a good idea.
>
> and how can I do that? manually edit the trac source cod
Am Donnerstag 14 Januar 2010 17:02:26 schrieb Peter Stuge:
> Andreas Jellinghaus wrote:
> > we could drop all certificates and issue username/password for each
> > developer instead.
>
> That would be the ultimate irony! Not even the developers can make
> the thing work.
well, it is true: we have
Andreas Jellinghaus wrote:
> we could drop all certificates and issue username/password for each
> developer instead.
That would be the ultimate irony! Not even the developers can make
the thing work.
Martin Paljak wrote:
> > yes, we could switch to ssh instead of http for write access.
> >
> >
On 14.01.2010, at 17:07, Andreas Jellinghaus wrote:
> Am Donnerstag 14 Januar 2010 15:28:49 schrieb Jim Rees:
>> Andreas Jellinghaus wrote:
>>
>> if we need to fix the server for this: we could drop all certificates
>> and issue username/password for each developer instead.
>>
>> Ugh. That wo
On 14.01.2010, at 16:52, Andreas Jellinghaus wrote:
> in the subversion log file (CHANGES in trunk) I can't see anything
> directly related to client certificates or renegotiation...
> but maybe the one-line summary text is to short to know for sure.
There must not be anything in the subversion ch
Am Donnerstag 14 Januar 2010 13:26:12 schrieb Alon Bar-Lev:
> On Thu, Jan 14, 2010 at 2:15 PM, Andreas Jellinghaus
wrote:
> > but svn still works
> > alias svn='LD_PRELOAD=/usr/lib/libneon.so.27 svn'
> >
> > svn ls https://www.opensc-project.org/svn/opensc/
> > branches/
> > releases/
> > tags/
>
Am Donnerstag 14 Januar 2010 15:28:49 schrieb Jim Rees:
> Andreas Jellinghaus wrote:
>
> if we need to fix the server for this: we could drop all certificates
> and issue username/password for each developer instead.
>
> Ugh. That would be embarassing for what is at least partly an
> authent
Andreas Jellinghaus wrote:
if we need to fix the server for this: we could drop all certificates
and issue username/password for each developer instead.
Ugh. That would be embarassing for what is at least partly an
authentication project. How about ssh key pairs?
___
On Thu, Jan 14, 2010 at 2:15 PM, Andreas Jellinghaus
wrote:
> but svn still works
> alias svn='LD_PRELOAD=/usr/lib/libneon.so.27 svn'
>
> svn ls https://www.opensc-project.org/svn/opensc/
> branches/
> releases/
> tags/
> trunk/
Doesn't work for me...
Which svn do you use?
I use:
svn, version 1.
Am Donnerstag 14 Januar 2010 12:22:40 schrieb Alon Bar-Lev:
> Yes.
> I tried to...
> But I cannot commit to opensc svn...
> Something was changed... Andreas instructed not to use GnuTLS enabled
> webdav... But I use OpenSSL... I need some time this week-end to
> investigate why I cannot use https p
Thanks.
Now clear.
Let's wait
Cyril
> -Original Message-
> From: Alon Bar-Lev [mailto:alon.bar...@gmail.com]
> Sent: Thursday, January 14, 2010 2:23 PM
> To: Aktiv Co. Kirill Mescheryakov
> Cc: opensc-devel@lists.opensc-project.org
> Subject: Re: [opensc-deve
Yes.
I tried to...
But I cannot commit to opensc svn...
Something was changed... Andreas instructed not to use GnuTLS enabled
webdav... But I use OpenSSL... I need some time this week-end to
investigate why I cannot use https protocol in order to connect to
opensc's svn anymore.
On Thu, Jan 14, 20
Hello,
Excuse me, but I would like to ask.
Do you plan to build opensc-0.11.12 on windows platform?
I mean OpenSC Build 008 or something like that.
Regards,
Cyril
___
opensc-devel mailing list
opensc-devel@lists.opensc-project.org
http://www.opensc-proj
24 matches
Mail list logo
