gnutls-devel
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [oss-security] CVE Request: evolution-data-server lacks SSL checking


From: Бранко Мајић
Subject: Re: [oss-security] CVE Request: evolution-data-server lacks SSL checking in its libsoup users
Date: Fri, 11 May 2012 18:50:14 +0200

A small curiosity - this function only supports working with single
large file? No support for something like hashed directory
(OpenSSL-style)?

On Fri, 11 May 2012 13:55:50 +0200
Nikos Mavrogiannopoulos <address@hidden> wrote:

> On Mon, May 7, 2012 at 1:06 PM, Sam Varshavchik
> <address@hidden> wrote:
> 
> > Debian installs /etc/ssl/certs/ca-certificates.crt. Fedora, and its
> > derivations, (Red Hat, Cent-OS) have /etc/pki/tls/cert.pem
> > installed. FreeBSD has /usr/local/share/certs/ca-root-nss.crt
> > The standard practice on Fedora is to have applications configured
> > or patched to use its default /etc/pki/tls/cert.pem certificate
> > bundle.
> 
> Thanks to Ludwig the next releases of gnutls would include a new
> function, gnutls_certificate_set_x509_system_trust(), which will use
> the system's trusted certificates, which are determined at configure
> time. Are there any comments or suggestions on this functionality?
> 
> regards,
> Nikos
> 
> _______________________________________________
> Gnutls-devel mailing list
> address@hidden
> https://lists.gnu.org/mailman/listinfo/gnutls-devel


-- 
Branko Majic
Jabber: address@hidden
Please use only Free formats when sending attachments to me.

Бранко Мајић
Џабер: address@hidden
Молим вас да додатке шаљете искључиво у слободним форматима.

Attachment: signature.asc
Description: PGP signature


reply via email to

[Prev in Thread] Current Thread [Next in Thread]