tech-userlevel archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: SoC: Improve syslogd

On Mon, May 26, 2008 at 05:49:22PM +0200, Martin Sch?tte wrote:
> I think for syslogd it is sufficient to use one global list of trusted 
> certificates/fingerprints.

I don't like to force that. Either specify a global certificate list and
allow each entry to match the common name or allow individual
certificates for each entry. A sane default behaviour would be to use
the entry and protocol from the config file and match that against the
certificate. E.g. look for sctp:// as common name.


Home | Main Index | Thread Index | Old Index