[Help-gnutls] Re: Semantics of `gnutls_openpgp_key_check_hostname ()'
ludovic.courtes at laas.fr
Thu Apr 12 15:41:20 CEST 2007
Simon Josefsson <simon at josefsson.org> writes:
> This logic suggests that GnuTLS should not check the hostname against
> the OpenPGP ID packet at all. All authorization decisions should be
> based on the trusted key list.
Well, that `check_hostname' function is not used within GnuTLS AFAICS,
so it's not a big problem. But it's true that it appears to be of
little practical use---not to mention that it currently does little more
than `strcmp ()'. ;-)
More information about the Gnutls-help