[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [Pulp-list] pulp certificates





On 08/23/2010 09:09 AM, Jason Dobies wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 08/23/2010 10:00 AM, Jeff Ortel wrote:
All,

I propose we move to combining the private key and certificates into a
single PEM encoded file.  This is a very common practice in PKI.  It
seems cleaner and would require less files to manage.  I verified that
having the key and cert combined in a single file is supported by both
yum and M2Crypto.  Moving to the combined file would reduce the number
of CLI arguments and allow us to store (1) certificate property in each
Repo object.

Thoughts?  Objections?

-jeff

If it works, I'm for it. I've only recently seen this done in mod_proxy,
but I've never encountered a situation where we've wanted them separate.

To be clear, we're only talking about entitlement certificates right?

No, I was thinking this would include the consumer ID certificate as well.


- --
Jason Dobies
RHCE# 805008743336126
Freenode: jdob
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/

iQEcBAEBAgAGBQJMcoEEAAoJEOMmcTqOSQHCYNsH/2rbL+lq5jyCGS29nY3N/7SW
yraoAvsfT6bO2Zo7PXUN42WW2iLlYmNhbBuH8oAROl9Wgoo4KTV/OFEUUu6s6dXZ
t3udqgmvT/hCVpXAEpDtrhW+BT+dGMBYpI20Hkt6U5QXWF6TSvfahedFxa2la21t
kkqsFa6Y2FEabxrmNTAuljTEg/GICRl+mlDunbTqnCf4YYawGagMPsRREZRKUjiM
17Z5JPARHR9o7Hj2uCKwPtdJEeI+mbySmG+SMgbVgyadMpfH0uNHByXljRPXWxfU
SQqWzLtDns01u3j9S1/R4HbDmuXNMyi14KlJ3S9lf/OatExTQz011lfQArmZ58M=
=s6CS
-----END PGP SIGNATURE-----

_______________________________________________
Pulp-list mailing list
Pulp-list redhat com
https://www.redhat.com/mailman/listinfo/pulp-list

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]