Hi,
On Tue, 24 Apr 2007, Eliot Lear wrote:
Miao,
TLS is still duplex even if syslog is simplex. In the same time,
authenticaiton happens in the handshaking phase of TLS when syslog message
transfering does not begin . So, simplex or duplex does not matter for
authentication.
I
Hi Dave,
Does the third paragraph eliminate the need for the first two
paragraphs?
I think they need to be merged. Key parts are these:
* SHOULD close the connection on failed authentication, and attempt
to log an error
* A discussion of the challenges of logging in such an
Hi,
I'm OK with this proposal with two minor changes.
- rather than (see below) it should have (see next paragraph)
- remove parenthasis from (with a bad certificate error) as that text is
normative.
vv
If the hostname does not match the identity in the certificate,
clients SHOULD log the