X.509 certificates support in OpenSSH - version f is ready
Roumen.Petrov at skalasoft.com
Roumen.Petrov at skalasoft.com
Fri Jan 31 04:58:04 EST 2003
Hi all,
I have pleasure to announce new version f of "X.509 certificates support in OpenSSH"
Please to update your bookmarks/favorites with new location:
http://roumenpetrov.info/openssh
Old location is available too:
http://satva.skalasoft.com/~rumen/openssh
What's new:
* support "Certificate Revocation Lists" (CRLs)
* ssh-keyscan can show hostkey with certificates
* information about X.509 certificates support added to all necessary manual pages
* Distinguished name/Subject in RFC2253 format and item order is not important
* script to create CRL used in tests
* test scripts for ssh-agent and CRLs
Note that version f has following preference of host key algorithms:
"x509v3-sign-rsa,x509v3-sign-dss,ssh-rsa,ssh-dss"
With this version development stage of "X.509 certificate support in OpenSSH" is finished and enter into maintenance phase.
More information about the openssh-unix-dev
mailing list