Suggestion: Deprecate SSH certificates and move to X.509 certificates

Peter Moody mindrot at hda3.com
Fri May 25 14:36:50 AEST 2018


On Thu, May 24, 2018 at 9:21 PM, Yegor Ievlev <koops1997 at gmail.com> wrote:
> Please tell me in technical details how current revocation support
> works, or give links. Then I will be able to give an answer.

https://man.openbsd.org/ssh-keygen#KEY_REVOCATION_LISTS

> On Fri, May 25, 2018 at 7:16 AM, Damien Miller <djm at mindrot.org> wrote:
>>
>>
>> On Fri, 25 May 2018, Yegor Ievlev wrote:
>>
>>> Can you implement revocation support?
>>
>> What do you want that the existing revocation support lacks?
> _______________________________________________
> openssh-unix-dev mailing list
> openssh-unix-dev at mindrot.org
> https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev


More information about the openssh-unix-dev mailing list