Re: SoC: Improve syslogd

[Joerg Sonnenberger <joerg%britannica.bec.de@localhost>]

On Mon, May 26, 2008 at 05:49:22PM +0200, Martin Sch?tte wrote:
> I think for syslogd it is sufficient to use one global list of trusted 
> certificates/fingerprints.

I don't like to force that. Either specify a global certificate list and
allow each entry to match the common name or allow individual
certificates for each entry. A sane default behaviour would be to use
the entry and protocol from the config file and match that against the
certificate. E.g. look for sctp://example.net as common name.

Joerg