Andreas Jellinghaus wrote:
> Am Mittwoch 03 März 2010 17:10:13 schrieb Viktor TARASOV:
>
>> Any objections if, for certificate and public key, I leave it like this ?
>>
>
> do current profiles use it for these cases, or only for the private parts?
>
In current profiles ('flex' and 'cyberflex') the ACLs of certificates,
public key, public data are defined with '$PIN'.
Finally they are created with ACLs 'NONE'.
My intention is to change these profiles, to reflect the current reality .
> i.e. if current profiles don't create the ACL all "NONE" then I'm fine with
> leaving the bug (but maybe better document it). However if users of current
> profile would create such broken files, then we had a problem that needs
> to be fixed somehow. but I guess that is not the case?
>
Files are not broken. As for me, public objects do not need
considerables security efforts, and its ACLs can be left at 'NONE' .
> Regards, Andreas
>
>
Kind wishes,
Viktor.
--
Viktor Tarasov <[email protected]>
_______________________________________________
opensc-devel mailing list
[email protected]
http://www.opensc-project.org/mailman/listinfo/opensc-devel
