[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Help-gnutls] Re: 1.2.9 release candidate
|
From: |
Simon Josefsson |
|
Subject: |
[Help-gnutls] Re: 1.2.9 release candidate |
|
Date: |
Tue, 01 Nov 2005 14:39:18 +0100 |
|
User-agent: |
Gnus/5.110004 (No Gnus v0.4) Emacs/22.0.50 (gnu/linux) |
Daniel Stenberg <address@hidden> writes:
> On Tue, 1 Nov 2005, Nikos Mavrogiannopoulos wrote:
>
>>> #ifdef GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD2
>>> flags | = GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD2;
>>> #endif
>>
>> No you don't want to add this line. It is not needed to verify the
>> certificate in question (the one sent some days ago) since it was
>> self signed with MD2
>
> Sorry, but then I'm lost. Can you then please enlighten me what I
> would need to do to verify that certificate with GnuTLS 1.2.9?
Nothing. It work by default. See an earlier reply from me, which
included output from gnutls-cli with successful verification.
You may want to use the MD5 flag, but I really recommend against it.
Trusted MD5 roots will work anyway, since they are trusted directly.
/Simon
- Re: [Help-gnutls] 1.2.9 release candidate, (continued)
- Re: [Help-gnutls] 1.2.9 release candidate, Daniel Stenberg, 2005/11/01
- [Help-gnutls] Re: 1.2.9 release candidate, Simon Josefsson, 2005/11/01
- [Help-gnutls] Re: 1.2.9 release candidate, Daniel Stenberg, 2005/11/01
- [Help-gnutls] Re: 1.2.9 release candidate, Simon Josefsson, 2005/11/01
- [Help-gnutls] Re: 1.2.9 release candidate, Daniel Stenberg, 2005/11/01
- [Help-gnutls] Re: 1.2.9 release candidate, Simon Josefsson, 2005/11/01
- [Help-gnutls] Re: 1.2.9 release candidate, Daniel Stenberg, 2005/11/01
- [Help-gnutls] Re: 1.2.9 release candidate, Simon Josefsson, 2005/11/01
Re: [Help-gnutls] 1.2.9 release candidate, Nikos Mavrogiannopoulos, 2005/11/01