[Bug 23931] Added some more TLS/SSL conditions (revoked, insecure, limit exceeded)
bugzilla-daemon at freedesktop.org
bugzilla-daemon at freedesktop.org
Mon Nov 9 15:04:59 CET 2009
http://bugs.freedesktop.org/show_bug.cgi?id=23931
Vivek Dasmohapatra <vivek at collabora.co.uk> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |ASSIGNED
Keywords| |patch
--- Comment #5 from Vivek Dasmohapatra <vivek at collabora.co.uk> 2009-11-09 06:04:58 PST ---
Revoked is _very_ distinct from expired: it means that someone with the
authority to do so has quite deliberately taken active steps to make sure
the cert i sno longer considered valid: I think it would be very bad to
conflate expired and revoked: For one thing, we ourselves treat revoked
as invalid even when in lenient mode, whereas we allow expired certs.
Similarly limit exceeded indicates that we have crossed a line which the
user or packager has chosen as a probable DOS attack, and insecure means
the same people have decided a cert/crypto is not sufficiently secure, so
we shouldn't really bury these inside the generic error.
Typo fixed.
--
Configure bugmail: http://bugs.freedesktop.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the telepathy-bugs
mailing list