Bug#485963: APT https method has no option for checking CRL

To: <submit@bugs.debian.org>
Cc: Axel Tillequin <axel.tillequin@eads.net>
Subject: Bug#485963: APT https method has no option for checking CRL
From: arno@natisbad.org (Arnaud Ebalard)
Date: Thu, 12 Jun 2008 18:37:47 +0200
Message-id: <[🔎] 87r6b2a9t0.fsf@natisbad.org>
Reply-to: arno@natisbad.org (Arnaud Ebalard), 485963@bugs.debian.org

Package: apt
Version: 0.7.14
Severity: wishlist

APT https method does not provide a way to verify revocation status of
server certificate. This is probably associated with the lack of support
in the underlying library (libcurl-gnutls) but Axel and I pushed patches
to curl maintainers that provide the feature.

I already sent a message with the patches that provide an option for
providing CRL directly to deity@lists.debian.org, but got not reply: 

http://permalink.gmane.org/gmane.linux.debian.apt.devel/14771

Note that the patches for libcurl are now in the CVS and will be in the
next stable version.

Cheers,

a+

Attachment: pgpxHs0qvx6vu.pgp
Description: PGP signature

Reply to:

Prev by Date: Bug#485960: APT https method does not verify peer certificate by default
Next by Date: Bug#485964: APT https method lacks example/doc
Previous by thread: Bug#485960: APT https method does not verify peer certificate by default
Next by thread: Bug#485964: APT https method lacks example/doc
Index(es):
- Date
- Thread