On 9/15/2019 8:29 AM, Kyle Hamilton wrote:
> OpenSSL is a toolkit, not a full implementation. More importantly, it
> is a library, so anyone who can link against it can perform all
> operations that the library can support, and the library has no
> concept of role separation built in.
OpenSSL is a toolkit, not a full implementation. More importantly, it is a
library, so anyone who can link against it can perform all operations that
the library can support, and the library has no concept of role separation
built in.
As such, the 'openssl' commandline tool allows the
I had been poking around the internet looking for implementations of Role
Separation for OpenSSL (in this case in Centos). I thought I should ask here
as well.
By "role separation" I'm thinking that only PKI roles can perform OpenSSL
commands and system admins are restri
