> Yes, but if there are more permitted peers, there is no way of > ditinguishing between them. > So, if I understand correctly, TLS certificates are good for two things: > - encryption on-the-wire > - server authentication
Also for client authentication - you just cannot obtain the certificate properties during message processing. But access control is fully provided. BTW: it's the same with server auth. Rainer _______________________________________________ rsyslog mailing list http://lists.adiscon.net/mailman/listinfo/rsyslog http://www.rsyslog.com/professional-services/ What's up with rsyslog? Follow https://twitter.com/rgerhards
