Security implications of (not using) GNUTLS_VERIFY_DO_NOT_ALLOW_SAME
Nikos Mavrogiannopoulos
nmav at gnutls.org
Mon Jun 21 13:46:40 CEST 2010
On Mon, Jun 21, 2010 at 1:45 PM, Nikos Mavrogiannopoulos
<nmav at gnutls.org> wrote:
>> Ok. But in this case, the behaviour I observed seems to be indeed a bug
>> in gnutls, as my certificate list did not contain the server's
>> certificate, but only the CA certificates.
> Then please send me something I can reproduce (such as the smallest
> possible list that I can use to verify the problem and how I can
> verify it).
And of course the version of gnutls you are using. If you are not
using 1.8.x please reproduce with it.
regards.
Nikos
More information about the Gnutls-help
mailing list