However, the very idea behind making this change is to eliminate theI don't see big difference between using private key in clear and private
"unhygenic" practice of using private keys in the clear...
key in pkcs8 file with no password or with "password" password. If someone
do not understand what is s/he doing then someone always find a way to screw up
him/herself :)
But if you insist....I insist on keeping xmlsec backward compatible now. I don't know who use
and what kind of scripts are based on a fact that "--privkey-der" loads a clear
text private key. Changing the library/utility behaiviour w/o warning seems
wrong to me. And for me, the issue does not seem important enough to go
to xmlsec 2.0 :)
How do --privkey-der-pkcs8 and --privkey-pem-pkcs8 sound?.What about simple "--pkcs8-pem" and "--pkcs8-der"? What else besides
private key could be there?
Aleksey
_______________________________________________ xmlsec mailing list [EMAIL PROTECTED] http://www.aleksey.com/mailman/listinfo/xmlsec
