Like having 600+ root CA certificates *isn't* a false sense of security? :)
Hey, should we be checking CRLs as well? I ask, because at work the CRLs I have to deal with have only 5 million certificates on them ... In seriousness, I wonder how often client software does that? I know OCSP responses can be cached, but still ... --Ken _______________________________________________ Nmh-workers mailing list Nmh-workers(_at_)nongnu(_dot_)org https://lists.nongnu.org/mailman/listinfo/nmh-workers
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Re: [Nmh-workers] TLS certificate validation, Ken Hornstein |
|---|---|
| Next by Date: | Re: [Nmh-workers] TLS certificate validation, Ken Hornstein |
| Previous by Thread: | Re: [Nmh-workers] TLS certificate validation, Valdis . Kletnieks |
| Next by Thread: | Re: [Nmh-workers] TLS certificate validation, Ralph Corderoy |
| Indexes: | [Date] [Thread] [Top] [All Lists] |