[systemd-devel] SSL for gatewayd
Zbigniew Jędrzejewski-Szmek
zbyszek at in.waw.pl
Wed Jan 9 16:41:54 PST 2013
On Wed, Jan 09, 2013 at 09:43:54PM +0200, Oleksii Shevchuk wrote:
> > - systemd-journal-gatewayd --trust ca.cert
> > will cause the daemon to require clients to present a client
> > certificate signed by this authority.
>
> Subject/CN whitelist and/or CRL/OCSP/etc should be used for this use-case.
Sure, in principle yes, and this can be added later. But for the normal
use case, where you just want to browse messages from one computer
and another computer under your control, this is overkill.
Zbyszek
More information about the systemd-devel
mailing list