Re: NSS support in cURL

2008-06-25 Thread Nelson B Bolyard
Daniel Stenberg wrote, On 2008-06-25 01:18: > Nelson B Bolyard bolyard.com> writes: > > (replying a bit out of context to sorry if the threading is not kept > perfectly intact) Welcome, Daniel! >>> Since NSS support has been added to cURL library, >> No kidding! When did that happen? > > Sin

Re: Update on DigiNotar and Entrust

2008-06-25 Thread Eddy Nigg
David E. Ross: > Is the problem here caused (or at least compounded) by the > implementation of bug #399045? See > . > No. -- Regards Signer: Eddy Nigg, StartCom Ltd. Jabber: [EMAIL PROTECTED] Blog: https://blog.startcom.org __

Re: Update on DigiNotar and Entrust

2008-06-25 Thread David E. Ross
On 6/20/2008 5:26 PM, Frank Hecker wrote: > As promised, here is an update on where things stand with regard to > DigiNotar and Entrust. (Since a lot of this is based on information I > got from Nelson, he's invited to point out where I got things wrong.) > > First, a recap for those who've forg

Re: NSS support in cURL

2008-06-25 Thread Wan-Teh Chang
I tested our NSS 3.12 release tarballs last night, but was too tired to post my findings before I went to bed. I didn't realize Daniel Stenberg would post here that fast. Daniel pointed out two problems in his CVS commit comment for the README.NSS file in libcurl. 1. name conflict of base64.h: t

Re: NSS 3.12 is released

2008-06-25 Thread Wan-Teh Chang
On Mon, Jun 23, 2008 at 6:35 PM, Gen Kanai <[EMAIL PROTECTED]> wrote: > > Do you think we'll get SQLite support in for 3.1 or perhaps a dot- > release? I asked Bob Relyea yesterday. He said this change should be tested "in the field" (which I assume meant "tested in Firefox trunk nightly builds")

RE: Importing exporting JKS key to NSS db

2008-06-25 Thread David Stutzman
As Nelson mentioned, just using FIPS-approved NSS isn't enough. Go to the NIST website and download the Security Policy document. That tells you how you must configure/run the system to be truly FIPS compliant. http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401val2007.htm#815 Straight to

Re: NSS support in cURL

2008-06-25 Thread Daniel Stenberg
Nelson B Bolyard bolyard.com> writes: (replying a bit out of context to sorry if the threading is not kept perfectly intact) > > Since NSS support has been added to cURL library, > > No kidding! When did that happen? Since about February 2007 and at least Fedora 9 ships curl build against NSS

Re: https flow

2008-06-25 Thread Pawel P
Kai Engert wrote: > Pawel P wrote: >> I want to overwrite default mozilla 1.9 behavior in https flow. >> I want to be informed about certificates (especially bad). >> I'll show my own "certificate dialogs" to user and user will decide >> if accept certificate or not. >> >> In mozilla 1.8 I used nsI