Hey,
I just updated the design doc above to v2.0, after we gained some
implementation experience with the original proposal.
As usual, almost none of the initial design survived contact with reality:
While the changes to certificate verification turned out to require less
changes than originally
Folks,
We reviewed TLS configuration options in libprocess and came up with the
following proposal [1] to allow for certificate verification in client mode
only.
In short, the proposal suggests to add two flags to libprocess so that it
can be configured to:
* always require presence and verify se
2 matches
Mail list logo