Re: [Bug-wget] certificate revocation lists (CRLs) #43501

bug-wget

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Bug-wget] certificate revocation lists (CRLs) #43501

From:	Petr Pisar
Subject:	Re: [Bug-wget] certificate revocation lists (CRLs) #43501
Date:	Wed, 5 Nov 2014 15:43:56 +0100
User-agent:	Mutt/1.5.23 (2014-03-12)

On Wed, Nov 05, 2014 at 01:54:20PM +0100, Noël Köthe wrote:
> Am Mittwoch, den 05.11.2014, 12:48 +0100 schrieb Tim Ruehsen:
> > BTW, does Debian meanwhile has a CRL infrastructure (something like 
> > /etc/ssl/certs/) or is planning something like it ?
> 
> I'm not aware of an infrastructure but asked the people who might know
> this (CC: to this list).
> 
> > Also, OCSP certificate status checking might be interesting for Wget.
> 
> :) ACK.
> 
Checking certificate validity is damn difficult (partial CRLs, CRL expiration,
CRL or OSCP server unavailability, caching).

There is dirmngr daemon that can do most of the things (it did not support
partial CRLs last time I checked). Unfortunatelly it has its own configuration
because it's from GnuPG project.

-- Petr

pgpY6LgGhdlqo.pgp
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

[Bug-wget] certificate revocation lists (CRLs) #43501, Noël Köthe, 2014/11/05
- Re: [Bug-wget] certificate revocation lists (CRLs) #43501, Tim Ruehsen, 2014/11/05
  - Re: [Bug-wget] certificate revocation lists (CRLs) #43501, Noël Köthe, 2014/11/05
    - Re: [Bug-wget] certificate revocation lists (CRLs) #43501, Christoph Anton Mitterer, 2014/11/05
  - Re: [Bug-wget] certificate revocation lists (CRLs) #43501, Noël Köthe, 2014/11/05
    - Re: [Bug-wget] certificate revocation lists (CRLs) #43501, Petr Pisar <=
- Re: [Bug-wget] [PATCH] certificate revocation lists (CRLs) #43501, Tim Ruehsen, 2014/11/06
  - Re: [Bug-wget] [PATCH] certificate revocation lists (CRLs) #43501, Giuseppe Scrivano, 2014/11/07
    - Re: [Bug-wget] [PATCH] certificate revocation lists (CRLs) #43501, Tim Ruehsen, 2014/11/07
    - Re: [Bug-wget] [PATCH] certificate revocation lists (CRLs) #43501, Tim Ruehsen, 2014/11/07
    - Re: [Bug-wget] [PATCH] certificate revocation lists (CRLs) #43501, Giuseppe Scrivano, 2014/11/08
    - Re: [Bug-wget] [PATCH] certificate revocation lists (CRLs) #43501, Tim Ruehsen, 2014/11/10
    - Re: [Bug-wget] [PATCH] certificate revocation lists (CRLs) #43501, Giuseppe Scrivano, 2014/11/11
    - Re: [Bug-wget] [PATCH] certificate revocation lists (CRLs) #43501, Tim Ruehsen, 2014/11/11
    - Re: [Bug-wget] [PATCH] certificate revocation lists (CRLs) #43501, Darshit Shah, 2014/11/12
    - Re: [Bug-wget] [PATCH] certificate revocation lists (CRLs) #43501, Tim Ruehsen, 2014/11/12

Prev by Date: Re: [Bug-wget] certificate revocation lists (CRLs) #43501
Next by Date: Re: [Bug-wget] [PATCH] fixing clock_gettime link error
Previous by thread: Re: [Bug-wget] certificate revocation lists (CRLs) #43501
Next by thread: Re: [Bug-wget] [PATCH] certificate revocation lists (CRLs) #43501
Index(es):
- Date
- Thread