[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [Pulp-list] pulp certificates



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 08/23/2010 10:00 AM, Jeff Ortel wrote:
> All,
> 
> I propose we move to combining the private key and certificates into a
> single PEM encoded file.  This is a very common practice in PKI.  It
> seems cleaner and would require less files to manage.  I verified that
> having the key and cert combined in a single file is supported by both
> yum and M2Crypto.  Moving to the combined file would reduce the number
> of CLI arguments and allow us to store (1) certificate property in each
> Repo object.
> 
> Thoughts?  Objections?
> 
> -jeff

If it works, I'm for it. I've only recently seen this done in mod_proxy,
but I've never encountered a situation where we've wanted them separate.

To be clear, we're only talking about entitlement certificates right?

- -- 
Jason Dobies
RHCE# 805008743336126
Freenode: jdob
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/

iQEcBAEBAgAGBQJMcoEEAAoJEOMmcTqOSQHCYNsH/2rbL+lq5jyCGS29nY3N/7SW
yraoAvsfT6bO2Zo7PXUN42WW2iLlYmNhbBuH8oAROl9Wgoo4KTV/OFEUUu6s6dXZ
t3udqgmvT/hCVpXAEpDtrhW+BT+dGMBYpI20Hkt6U5QXWF6TSvfahedFxa2la21t
kkqsFa6Y2FEabxrmNTAuljTEg/GICRl+mlDunbTqnCf4YYawGagMPsRREZRKUjiM
17Z5JPARHR9o7Hj2uCKwPtdJEeI+mbySmG+SMgbVgyadMpfH0uNHByXljRPXWxfU
SQqWzLtDns01u3j9S1/R4HbDmuXNMyi14KlJ3S9lf/OatExTQz011lfQArmZ58M=
=s6CS
-----END PGP SIGNATURE-----


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]