Cert pinning
Richard Laager
rlaager at wiktel.com
Thu Mar 28 22:00:51 UTC 2019
On 3/28/19 3:01 PM, Gary E. Miller via devel wrote:
> server nts3-e.ostfalia.de:443 nts noval pin 60b87575447dcba2a36b7d11ac09fb24a9db406fee12d2cc90180517616e8a18
I think the "pin" option should take (as an argument or in its name),
the hash algorithm being used (presumably SHA-256 here, but it could
change in the future). For example, HPKP uses pin-sha256 as the name.
--
Richard
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ntpsec.org/pipermail/devel/attachments/20190328/e79bfc59/attachment.bin>
More information about the devel
mailing list