On 2013-10-10 01:36, Nathan Kinder wrote: > On 09/28/2013 12:17 PM, Brian Smith wrote: >> On Sat, Sep 28, 2013 at 7:52 AM, Sean Leonard <dev+mozi...@seantek.com> >> wrote: >>> On 9/27/2013 5:51 PM, Robert Relyea wrote: >>>> >>>> I don't have a problem with going for an industry standard way of doing >>>> all of these things, but it's certainly pretty presumptuous to remove these >>>> features without supplying the industry standard replacements and time for >>>> them to filter through the internet. bob >> >> Why isn't <keygen> good enough? > > > There is no support for key archival with <keygen>, which is supported > by generateCRMFRequest. We heavily rely on generateCRMFRequest in > Dogtag Certificate System (and Red Hat Certificate System), and key > archival is one of the features that we use. > > I'm all for a standardized replacement, but it seems wrong to rip out > something that has been a nice functional feature that people have come > to rely on for many years before a replacement is available.
Since keygen and generateCRMFRequest are 18 respective 12 years old this seems to be a rather reasonable request. I.e. we can probably not expect a suitable replacement until 2020 or so. Anders > > Thanks, > -NGK > >> >> Cheers, >> Brian >> > -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto