[Bug 3132] New: No command to list the content of an SSH KRL

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Mon Mar 9 23:23:02 AEDT 2020


https://bugzilla.mindrot.org/show_bug.cgi?id=3132

            Bug ID: 3132
           Summary: No command to list the content of an SSH KRL
           Product: Portable OpenSSH
           Version: 8.2p1
          Hardware: Other
                OS: Linux
            Status: NEW
          Severity: enhancement
          Priority: P5
         Component: ssh-keygen
          Assignee: unassigned-bugs at mindrot.org
          Reporter: rik.theys at esat.kuleuven.be

Hi,

The ssh-keygen command allows generation of a KRL in a binary format.
It also has a command line option (-Q) to check if a specific
certificate/public key is on the KRL.

I did not find any command that will display the full content of a KRL
so see which certificates/serial nr/hashes are on the revocation list.

It would be nice to have such a command so we can easily check which
certificates have been revoked in the past.

Regards,
Rik

-- 
You are receiving this mail because:
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list