On Fri, 2016-06-03 at 10:24 +0200, Florian Weimer wrote:
> On 06/03/2016 09:13 AM, Nikos Mavrogiannopoulos wrote:
> >
> > If you are of the types who like tinkering, here is a way to
> > restrict
> > CA certificates in your Fedora on specific domains. Currently
> > limited
> > to gnutls
On Fri, 2016-06-03 at 15:14 +0200, Tomas Mraz wrote:
> > > Not in the terms of stapled extensions - as the extensions would
> > > have
> > > to be stapled onto some concrete certificates. You would have to
> > > basically create stapled extensions for every CA in your trusted
> > > list
> > >
On Pá, 2016-06-03 at 13:54 +0200, Florian Weimer wrote:
> On 06/03/2016 01:52 PM, Nikos Mavrogiannopoulos wrote:
> >
> > On Fri, 2016-06-03 at 10:24 +0200, Florian Weimer wrote:
> > >
> > > On 06/03/2016 09:13 AM, Nikos Mavrogiannopoulos wrote:
> > > >
> > > >
> > > > If you are of the types
