On Wed, Oct 12, 2011 at 08:19:27PM +0200, Henrik Nordström wrote: > > And why is so much of the Fedora inftrastructure relying on plain text > password exchanges (within SSL, but still plain text at the Fedora > servers) when there is both HTTP digest authentication (no plaintext > seen by Fedora servers) and SSL certificates and SSH keys which all > three serves a much better identification method? > Don't know about hte others but we've actually looked at SSL certificates several times. Unfortunately, they have the client side tooling around SSL certificates makes them less attractive than they could be. It seems that what we need is the equivalent to an ssh-agent for SSL certificates to bring that end of things up to par.
-Toshio
pgpu4FpqPu0dy.pgp
Description: PGP signature
-- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
