On Mon, Feb 06, 2017 at 10:37:34AM +0200, Alexander Bokovoy wrote:
> On ma, 06 helmi 2017, Jan Cholasta wrote:
> > On 11.1.2017 02:09, Fraser Tweedale wrote:
> > > On Tue, Jan 10, 2017 at 10:48:08AM +0100, Martin Babinsky wrote:
> > > > Hi Fraser,
> > > >
> > > > I have some rather inane
On ma, 06 helmi 2017, Jan Cholasta wrote:
On 11.1.2017 02:09, Fraser Tweedale wrote:
On Tue, Jan 10, 2017 at 10:48:08AM +0100, Martin Babinsky wrote:
Hi Fraser,
I have some rather inane comments. I guess Jan cholasta will do a more
thorough review of your design. See below:
On 01/06/2017
On 11.1.2017 02:09, Fraser Tweedale wrote:
On Tue, Jan 10, 2017 at 10:48:08AM +0100, Martin Babinsky wrote:
Hi Fraser,
I have some rather inane comments. I guess Jan cholasta will do a more
thorough review of your design. See below:
On 01/06/2017 09:08 AM, Fraser Tweedale wrote:
Hi comrades,
On Tue, Jan 10, 2017 at 10:48:08AM +0100, Martin Babinsky wrote:
> Hi Fraser,
>
> I have some rather inane comments. I guess Jan cholasta will do a more
> thorough review of your design. See below:
>
> On 01/06/2017 09:08 AM, Fraser Tweedale wrote:
> > Hi comrades,
> >
> > I have written up the
Hi Fraser,
I have some rather inane comments. I guess Jan cholasta will do a more
thorough review of your design. See below:
On 01/06/2017 09:08 AM, Fraser Tweedale wrote:
Hi comrades,
I have written up the high-level details of the FreeIPA->Dogtag
GSS-API authentication design. The goal
Hi comrades,
I have written up the high-level details of the FreeIPA->Dogtag
GSS-API authentication design. The goal is improve security by
removing an egregious privilege separation violation: the RA Agent
cert.
There is a fair bit of work still to do on the Dogtag side but
things are shaping