At 4:30 PM +0100 4/12/07, Gervase Markham wrote:
>Paul Hoffman wrote:
>> At 10:00 AM + 3/14/07, Gervase Markham wrote:
>>> Paul Hoffman wrote:
A related question that I was intending to do some research on: if a
trust anchor ("trusted root" in this thread) has an expiration date
>
Rob Crittenden wrote:
>
> I ended up going with a layer that doesn't define any methods. Seems to
> be working ok. I originally assumed the order of the layers and would do
> things like: mydata = ssl->lower->secret but later changed it to fetch
> the layer by name and retrieve the data directly
Nelson Bolyard wrote:
> Your proposal would require storing the equivalent of a name constraints
> extension along with the root CA cert. It would also require additional
> processing, because name constraints are generally not processed inside
> trust anchors. That is, usually a CA puts the name
Paul Hoffman wrote:
> At 10:00 AM + 3/14/07, Gervase Markham wrote:
>> Paul Hoffman wrote:
>>> A related question that I was intending to do some research on: if a
>>> trust anchor ("trusted root" in this thread) has an expiration date
>>> in the past, doe NSS still treat it as a trust anchor
Wan-Teh Chang wrote:
> Rob Crittenden wrote:
>> Wan-Teh Chang wrote:
>>> Rob Crittenden wrote:
2. If I call PR_Shutdown() on an SSL socket, is there a way later to
see the flags I called it with? For example, if I call it just with
PR_SHUTDOWN_SEND is there a way I can find that ou
5 matches
Mail list logo
