Re: apt-https authentication

To: Tomas Pospisek <tpo_deb@sourcepole.ch>
Cc: APT Development Team <deity@lists.debian.org>
Subject: Re: apt-https authentication
From: Jason Gunthorpe <jgg@debian.org>
Date: Wed, 15 May 2002 15:26:35 -0600 (MDT)
Message-id: <Pine.LNX.3.96.1020515152442.3242A-100000@wakko.debian.net>
In-reply-to: <Pine.LNX.4.44.0205152029320.16874-100000@tpo2.sourcepole>

On Wed, 15 May 2002, Tomas Pospisek wrote:

> > > ssl.c seems to be very clean and handles a lot of stuff and leaves open a
> > > lot of options on how to handle certificates, authentication etc. If we
> >
> > Well, you don't really want alot of options, you just want to have it work
> > :>
> >
> > You have to decide if you want to implement the full HTTP type checking
> > with authoritative signers/etc, or something simpler..
 
> I want full checking and I want to give the user a choice (certificates is
> a somewhat complicated affair and I guess not everybody's piece of cake).

Choice is a funny thing.. You probably can get away with a directory like
/etc/apt/certs/ that has files like 'ftp.foo.org.pem' with the certs in
them, just match against them exactly.

I've been waiting for the cert checking stuff before putting it in CVS.

Jason


-- 
To UNSUBSCRIBE, email to deity-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

References:
- Re: apt-https authentication
  - From: Tomas Pospisek <tpo_deb@sourcepole.ch>

Prev by Date: Re: apt-https authentication
Next by Date: some proposed changes/requirements for apt
Previous by thread: Re: apt-https authentication
Next by thread: some proposed changes/requirements for apt
Index(es):
- Date
- Thread