[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Fwd: Re: [oss-security] CVE Request: evolution-data-server lacks SSL
From: |
Nikos Mavrogiannopoulos |
Subject: |
Re: Fwd: Re: [oss-security] CVE Request: evolution-data-server lacks SSL checking in its libsoup users |
Date: |
Tue, 8 May 2012 15:47:49 +0200 |
On Tue, May 8, 2012 at 2:46 PM, Ludwig Nussel <address@hidden> wrote:
[...]
> It supports similar trust settings like NSS though. Check the -addtrust
> parameter of "openssl x509".
Are you sure that addtrust doesn't just consult the object identifiers
present in the certificate?
Re: [oss-security] CVE Request: evolution-data-server lacks SSL checking in its libsoup users, Sam Varshavchik, 2012/05/07
Re: Fwd: Re: [oss-security] CVE Request: evolution-data-server lacks SSL checking in its libsoup users, Ludwig Nussel, 2012/05/07