Re: [Issue 650] Changed - certificate handling

From: Greg Hudson <ghudson_at_MIT.EDU>
Date: 2002-04-09 17:20:57 CEST

On Tue, 2002-04-09 at 11:04, Kevin Pilch-Bisson wrote:
> Sorry, I should have read the whole issue. I would say that only a small part
> of the stuff mentioned in the issue needs to be done for alpha. Namely
> caching the server certs or there fingerprints so that we can detect
> man-in-the-middle attacks.

Eh? This is not ssh. Either a certificate is signed by a chain leading
to a trusted CA or it's not.

I suppose you could cache self-signed certificates so that you'd know if
you're getting the same one each time, but certificates do expire, so
that's not especially valuble.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Tue Apr 9 17:21:49 2002

This message: [ Message body ]
Next message: Kevin Pilch-Bisson: "Re: [Issue 650] Changed - certificate handling"
Previous message: cmpilato_at_collab.net: "Re: [Issue 650] Changed - certificate handling"
In reply to: Kevin Pilch-Bisson: "Re: [Issue 650] Changed - certificate handling"
Next in thread: Kevin Pilch-Bisson: "Re: [Issue 650] Changed - certificate handling"
Reply: Kevin Pilch-Bisson: "Re: [Issue 650] Changed - certificate handling"
Reply: Peter Mathiasson: "Re: [Issue 650] Changed - certificate handling"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]