Subject: A better approach to security
List archive
- From: Jan Dittberner <jandd AT cacert.org>
- To: cacert AT lists.cacert.org
- Subject: Re: Using a cacert certificate
- Date: Tue, 21 Sep 2010 19:13:39 +0200
On Tue, Sep 21, 2010 at 05:06:10PM +0200, Mathias Ertl wrote:
> Hi,
>
> On 09/20/2010 11:55 AM, Ian G wrote:
> > The best bet is TLS-SNI. To use that you probably have to hunt around
> > for a verion of Linux and/or httpd that has it included. It's not
> > widespread as yet.
>
> Well at least the current Ubuntu server supports it. Debian unstable
> (which is already frozen) supports it.
You mean testing (Squeeze) that will be the next stable release. There are
working backports for the current stable Debian release Lenny at [1] too. I
used these packages to setup a SNI aware subversion repository few months ago
[2].
[1] http://people.debian.org/~morph/bpo/
[2] http://wiki.cacert.org/Technology/KnowledgeBase/ClientCerts#SVN
Regards
Jan Dittberner
--
Jan Dittberner - CAcert Infrastructure Team
GPG-key: 4096R/558FB8DD 2009-05-10
B2FF 1D95 CE8F 7A22 DF4C F09B A73E 0055 558F B8DD
http://www.dittberner.info/
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
-
Using a cacert certificate,
Philip Rhoades, 09/18/2010
-
Re: Using a cacert certificate,
Markus Warg, 09/20/2010
-
Re: Using a cacert certificate,
Ian G, 09/20/2010
-
Re: Using a cacert certificate,
Mathias Ertl, 09/21/2010
- Re: Using a cacert certificate, Jan Dittberner, 09/21/2010
-
Re: Using a cacert certificate,
Mathias Ertl, 09/21/2010
-
Re: Using a cacert certificate,
Ian G, 09/20/2010
- Re: Using a cacert certificate, Dominik George, 09/20/2010
-
Re: Using a cacert certificate,
Markus Warg, 09/20/2010
Archive powered by MHonArc 2.6.24.