Re: [Issue 650] Changed - certificate handling

From: Kevin Pilch-Bisson <kevin_at_pilch-bisson.net>
Date: 2002-04-09 15:57:06 CEST

On Tue, Apr 09, 2002 at 01:57:57PM -0000, issues@subversion.tigris.org wrote:
> + ------- Additional Comments From cmpilato@tigris.org 2002-04-09 06:57 -------
> + Given that SSL without certs earns us a CVS-matching encryption level,
> + assigning this a post-1.0 milestone.
>
This cert handling is required to use SSL properly. We need to be able to
verify that the server cert is valid. For example warn about self-signed
server certs, etc.

Without this cert handling, SSL buys us no security whatsoever (well not much
at least).

-- 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Kevin Pilch-Bisson                    http://www.pilch-bisson.net
     "Historically speaking, the presences of wheels in Unix
     has never precluded their reinvention." - Larry Wall
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

application/pgp-signature attachment: stored

Received on Tue Apr 9 16:02:48 2002

This message: [ Message body ]
Next message: cmpilato_at_collab.net: "Re: [Issue 650] Changed - certificate handling"
Previous message: Glenn A. Thompson: "Re: the @ syntax - date format"
Next in thread: cmpilato_at_collab.net: "Re: [Issue 650] Changed - certificate handling"
Maybe reply: cmpilato_at_collab.net: "Re: [Issue 650] Changed - certificate handling"
Maybe reply: cmpilato_at_collab.net: "Re: [Issue 650] Changed - certificate handling"
Maybe reply: Kevin Pilch-Bisson: "Re: [Issue 650] Changed - certificate handling"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]