Re: [PATCH] Cache ssl client certificate passphrases

From: Greg Hudson <ghudson_at_MIT.EDU>
Date: Thu, 08 May 2008 16:34:04 -0400

On Thu, 2008-05-08 at 15:27 -0400, Karl Fogel wrote:
> If I understand him correctly, Joe is pointing out that the only purpose
> of this passphrase is to decrypt the cert -- so instead of storing the
> passphrase unencrypted, we might as well dispense with the passphrase
> entirely and just store the unencrypted cert itself.

Do Keychain etc. have the ability to store certs? That seems more
straightforward than storing a cert decryption password in Keychain and
then an encrypted cert, but only if that's part of the architecture of
Keychain-type frameworks.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe_at_subversion.tigris.org
For additional commands, e-mail: dev-help_at_subversion.tigris.org
Received on 2008-05-08 22:34:28 CEST

This message: [ Message body ]
Next message: Simon Perreault: "Re: Fwd: [patch] contrib: support for a 'svn-clean:ignore' dirprop"
Previous message: Arfrever Frehtes Taifersar Arahesis: "kwallet branch is finished"
In reply to: Karl Fogel: "Re: [PATCH] Cache ssl client certificate passphrases"
Next in thread: Branko Čibej: "Re: [PATCH] Cache ssl client certificate passphrases"
Reply: Branko Čibej: "Re: [PATCH] Cache ssl client certificate passphrases"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]