[NNTP] One more STARTTLS issue
Ken Murchison
ken at oceana.com
Mon Aug 15 09:15:13 PDT 2005
Russ Allbery wrote:
> Sorry, I missed this.
>
> I don't think we did anything about this portion of Sam's review of
> STARTTLS:
>
> | The TLS document discusses certificate matching but does not discuss
> | certificate verification. I'd recommend using the certificate
> | verification specified in RFC 3280. You certainly need to say
> | something about verification.
>
> I think this may be as simple as inserting a sentence or so with a
> normative reference to RFC 3280.
Suggested wording? Is this a SHOULD or a MUST?
--
Kenneth Murchison Oceana Matrix Ltd.
Software Engineer 2495 Main St. - Suite 401
716-604-0088 x26 Buffalo, NY 14214
--PGP Public Key-- http://www.oceana.com/~ken/ksm.pgp
More information about the ietf-nntp
mailing list