On Tue, 2014-12-09 at 13:54 +, David Woodhouse wrote:
> On Tue, 2014-12-09 at 13:15 +0000, Martinsson Patrik wrote:
> > So, If I don't have opensc-module, one way or another in
> > (sql):/etc/pki/nssdb I will loose all functionality that gsd brings me,
> > for ex
On Mon, 2014-12-08 at 16:59 +, David Woodhouse wrote:
> On Mon, 2014-12-08 at 16:44 +0000, Martinsson Patrik wrote:
> > Well,not really, it turns out that the gnome-settings-daemon loads the
> > opensc-module directly from /etc/pki/nssdb. So if I don't import the
> &
On Mon, 2014-12-08 at 13:05 +, David Woodhouse wrote:
> On Mon, 2014-12-08 at 10:15 +0000, Martinsson Patrik wrote:
> > So, to summarize,
> > $> sudo update-alternatives --install /usr/lib64/libnssckbi.so
> > libnssckbi.so.x86_64 /usr/lib64/p11-kit-proxy.so 1000
>> Yes, there are some applications which use NSS only for private crypto
>> purposes and don't need the trust roots, but Patrik seemed to be suggesting
>> that in RHEL, even Firefox wasn't loading libnssckbi.so until he manually
>> added it to pkcs11.txt/secmod.db.
Maybe I should have been cl
one any configuration and that thing just works
as I expect). I still don't understand why Mozilla is using their own
nssdb, but since re-linking libnssckbi to p11-kit-proxy it doesn't
really matter to me from a sysadmin perspective.
Best regards,
Patrik Martinsson,
Sweden
Tu
Hi again,
Thanks for all the info guys, it certainly answered some of my questions
(and I've also figured out some stuff while digging on my own).
With that being said, this still seems like a *huge* jungle for a
sysadmin, and while the introduction of p11-kit seems promising I'm
still somewhat
Hi everyone,
I Need some help understanding the usage of the libnsssysinit-library
(or a recommended method in handling the scenario described below).
First I'll write shortly about our scenario,
- We manage around 150 Red Hat Clients (atm v6.6 but in the progress of
updating to 7.0)
- We use
7 matches
Mail list logo
