On 23.05.2013 17:18, Moritz wrote: > A generic solution is any kind of scheduler/calendar/reminder, right? Or > what kind of tool to you imagine,
I imagine a tool that can - parse X.509 certificates to extract notAfter dates - read e-mail addresses from subject DN, subjectAltNames etc. - override (if an address was found in the certificate) or configure e-mail addresses of responsible persons for each individual certificate - "harvest" certificates through file import in any of the usual formats, SSL/TLS handshake (direct on the port or maybe even via STARTTLS and the like) and optionally even other ways (like directory search, CA database import, CMS/SMIME with embedded certificates, ...) Maybe I would even start a project to develop such a tool. But why start coding if there already is a >=80% solution to the problem? Hence my request. > and how is that specific to "crypto"? You are right, strictly speaking this is not about crypto. But since this list has seen some nagging about SSL/TLS and (public) PKI in the past, I thought this question might be somewhat appropriate. Regards, Hans-Joachim. -- -------------------------------------------------------- 5. Tag der IT-Sicherheit - 04.07.2013, IHK Karlsruhe Infos und Anmeldung: http://www.tag-der-it-sicherheit.de -------------------------------------------------------- Hans-Joachim Knobloch Security Consulting Secorvo Security Consulting GmbH Ettlinger Strasse 12-14, D-76137 Karlsruhe Tel. +49 721 255171-305, Fax +49 721 255171-100 [email protected], http://www.secorvo.de PGP: A766 A23F 1079 3075 DF18 56E0 F61F A8F8 Mannheim HRB 108319, Geschäftsführer: Dirk Fox _______________________________________________ cryptography mailing list [email protected] http://lists.randombit.net/mailman/listinfo/cryptography
