[Pki-devel] [PATCH] Ticket-1206-java-console-TLS-range-support-code-chan.patch
Christina Fu
cfu at redhat.com
Mon Nov 24 19:34:37 UTC 2014
Yes, unlike browsers, who talk to random unknown ssl servers, our cli's
and java console clients only talk to Dogtag cs servers. We just depend
on the cs server settings for restrictions. The code changes in the
areas that affect cli's and java console are only to make sure we can
work within whatever tls ranges the cs servers set it to, e.g. tls1_2 -
tls1_2.
thanks,
Christina
On 11/24/2014 11:27 AM, John Magne wrote:
> ACK
>
> With the caveat that it might have been nice to have these settings to be configurable, but as I understand it,
> there is no need to because this code is talking to one of our own servers with well known requirements.
>
> ----- Original Message -----
> From: "Christina Fu" <cfu at redhat.com>
> To: pki-devel at redhat.com
> Sent: Friday, November 21, 2014 6:06:34 PM
> Subject: [Pki-devel] [PATCH] Ticket-1206-java-console-TLS-range-support-code-chan.patch
>
> attached is the java console part of client side changes for TLS range
> support:
> https://fedorahosted.org/pki/ticket/1206 TLS range support: code change
> needed for cs when acting as client
>
> Please review.
> thanks,
> Christina
>
> _______________________________________________
> Pki-devel mailing list
> Pki-devel at redhat.com
> https://www.redhat.com/mailman/listinfo/pki-devel
More information about the Pki-devel
mailing list