Disable client authentication with certificates

Wolfgang Breyha wbreyha at gmx.net
Mon Dec 9 12:10:02 EST 2013

On 2013-12-09 16:59, Stefan Gofferje wrote:
> That worked fine :). Thanks. Is it planned to integrate your patch into
> Cyrus? It *is* kinda illogical to ask for a client cert when client cert
> authentication is explicitly disabled ^^.

My patch is not suitable for general use. IMO client cert requests should
either depend on a new option or on the availability of configured CAs.
Both is possible, but I'm not aware of the reason why client certs are
requested historically.

I would simply make it dependent of CA availability.

Greetings, Wolfgang
Wolfgang Breyha <wbreyha at gmx.net> | http://www.blafasel.at/
Vienna University Computer Center | Austria

More information about the Info-cyrus mailing list