shibboleth-dev - Re: testing the one-hop validation scenario
Subject: Shibboleth Developers
List archive
- From: "RL 'Bob' Morgan" <>
- To: Derek Atkins <>
- Cc: Shibboleth Design Team <>
- Subject: Re: testing the one-hop validation scenario
- Date: Fri, 30 May 2003 17:14:40 -0700 (PDT)
> I wonder, with the new trust/sites metadata formats, what's the
> "calist" used for anymore?
It's for validating the server cert sent by the AA via https when doing
the attribute fetch. It suffers from the "all CAs trusted for everything"
problem, but this is less of a risk for this communication.
- RL "Bob"
------------------------------------------------------mace-shib-design-+
For list utilities, archives, subscribe, unsubscribe, etc. please visit the
ListProc web interface at
http://archives.internet2.edu/
------------------------------------------------------mace-shib-design--
- testing the one-hop validation scenario, RL 'Bob' Morgan, 05/30/2003
- Re: testing the one-hop validation scenario, RL 'Bob' Morgan, 05/30/2003
- Re: testing the one-hop validation scenario, Derek Atkins, 05/30/2003
- Re: testing the one-hop validation scenario, RL 'Bob' Morgan, 05/30/2003
- Re: testing the one-hop validation scenario, Derek Atkins, 05/30/2003
- Re: testing the one-hop validation scenario, RL 'Bob' Morgan, 05/30/2003
Archive powered by MHonArc 2.6.16.