[ssh_x509] Clarification on alignment with RFC6187

ssh_x509 at roumenpetrov.info ssh_x509 at roumenpetrov.info
Sat Dec 3 14:54:41 EET 2016


ssh_x509 at roumenpetrov.info wrote:
> Hi Roumen and Daniel,
>
> Thank you for the clarification, I think I'm beginning to understand
> everything but now I would like to know if it's possible to use
> x509v3-ssh-dss and x509v-ssh-rsa with PKIX-SSH. It sounds like these
> algorithms are not supported currently since the full cert chain isn't
> included with x509v3-sign-rsa and x509v3-sign-dss. Is that correct?
RSA and DSA as described in RFC6187 are not enabled yet in source code 
due to backward compatibility.

> -Peter
[SNIP]

Roumen





More information about the ssh_x509 mailing list