From: Jordan R. <jor...@gm...> - 2006-02-22 14:05:40
|
Tomas, Can you tell me whether or not exntesions are supported in version 3_2? I need to use the extensions for authorization information. Also, if extensions are supported, can a group of extensions be modified and resigned, or does the cert have to be regenerated each time information is modified? Thanks Jordan |
From: yannick q. <yqu...@li...> - 2006-02-22 14:25:35
|
Tomas, I take advantage of the mail, to indicate that it would maybe be interesting to let create fields in the profiles certificate and EE to allow the addition of private extension. Bar example by allowing the administrator to add empty fields and value, to use for specific needs. Regards, Yannick > Tomas, > > Can you tell me whether or not exntesions are supported in version > 3_2? I need to use the extensions for authorization information. Also, > if extensions are supported, can a group of extensions be modified and > resigned, or does the cert have to be regenerated each time > information is modified? > > Thanks > > Jordan > > > ------------------------------------------------------- > This SF.net email is sponsored by: Splunk Inc. Do you grep through log > files > for problems? Stop! Download the new AJAX search engine that makes > searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! > http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=103432&bid#0486&dat=12164= 2 > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > > |
From: Ejbca S. <ejb...@pr...> - 2006-02-22 14:30:21
|
The problem with private extensions is that you also have to provide an ASN.1 definition. What would be possible is to have say support for user defined trivial extension like simple strings. Otherwise an x.509 extension can be a quite complex beast in asn.1 /Tomas yannick quenechdu wrote: > Tomas, > > I take advantage of the mail, to indicate that it would maybe be > interesting to let create fields in the profiles certificate and EE to > allow the addition of private extension. > Bar example by allowing the administrator to add empty fields and value, > to use for specific needs. > > Regards, > Yannick > > >> Tomas, >> >> Can you tell me whether or not exntesions are supported in version >> 3_2? I need to use the extensions for authorization information. Also, >> if extensions are supported, can a group of extensions be modified and >> resigned, or does the cert have to be regenerated each time >> information is modified? >> >> Thanks >> >> Jordan >> >> >> ------------------------------------------------------- >> This SF.net email is sponsored by: Splunk Inc. Do you grep through log >> files >> for problems? Stop! Download the new AJAX search engine that makes >> searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! >> http://sel.as-us.falkag.net/sel?cmd=lnk&kid3432&bid#0486&dat1642 >> _______________________________________________ >> Ejbca-develop mailing list >> Ejb...@li... >> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >> >> >> > > > > > ------------------------------------------------------- > This SF.net email is sponsored by: Splunk Inc. Do you grep through log files > for problems? Stop! Download the new AJAX search engine that makes > searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! > http://sel.as-us.falkag.net/sel?cmd_______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
From: Jordan R. <jor...@gm...> - 2006-02-22 14:41:43
|
My interest would be in non-critical extensions. However, the extension would be present in any certificate that is owned by a user who is a member in the system I am working on. Secondly, would the extensions be easily modifiable? From the API, I see that signing manifests itself as createCertificate, but does that only create new certs? On 2/22/06, Ejbca Support <ejb...@pr...> wrote: > > The problem with private extensions is that you also have to provide an > ASN.1 definition. What would be possible is to have say support for user > defined trivial extension like simple strings. Otherwise an x.509 > extension can be a quite complex beast in asn.1 > > /Tomas > > yannick quenechdu wrote: > > Tomas, > > > > I take advantage of the mail, to indicate that it would maybe be > > interesting to let create fields in the profiles certificate and EE to > > allow the addition of private extension. > > Bar example by allowing the administrator to add empty fields and value= , > > to use for specific needs. > > > > Regards, > > Yannick > > > > > >> Tomas, > >> > >> Can you tell me whether or not exntesions are supported in version > >> 3_2? I need to use the extensions for authorization information. Also, > >> if extensions are supported, can a group of extensions be modified and > >> resigned, or does the cert have to be regenerated each time > >> information is modified? > >> > >> Thanks > >> > >> Jordan > >> > >> > >> ------------------------------------------------------- > >> This SF.net email is sponsored by: Splunk Inc. Do you grep through log > >> files > >> for problems? Stop! Download the new AJAX search engine that makes > >> searching your log files as easy as surfing the web. DOWNLOAD SPLUNK= ! > >> http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=103432&bid#0486&dat=1216= 42 > >> _______________________________________________ > >> Ejbca-develop mailing list > >> Ejb...@li... > >> https://lists.sourceforge.net/lists/listinfo/ejbca-develop > >> > >> > >> > > > > > > > > > > ------------------------------------------------------- > > This SF.net email is sponsored by: Splunk Inc. Do you grep through log = files > > for problems? Stop! Download the new AJAX search engine that makes > > searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! > > http://sel.as-us.falkag.net/sel?cmd____________________________________= ___________ > > Ejbca-develop mailing list > > Ejb...@li... > > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > > > > > > ------------------------------------------------------- > This SF.net email is sponsored by: Splunk Inc. Do you grep through log fi= les > for problems? Stop! Download the new AJAX search engine that makes > searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! > http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat= =3D121642 > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
From: Ejbca S. <ejb...@pr...> - 2006-02-22 14:55:15
|
All extensions can be either critical or non critical. In ejbca look at the certificate profiles to see the extensions we support, they can be set to either critical or non-critical. Jordan Rivington wrote: > My interest would be in non-critical extensions. However, the > extension would be present in any certificate that is owned by a user > who is a member in the system I am working on. > > Secondly, would the extensions be easily modifiable? From the API, I > see that signing manifests itself as createCertificate, but does that > only create new certs? > Yes createCertficate creates a new certificate, but it uses the public key passed, so you can easily create a new certificate using the old public key, which in you other mail you noted as the only way to change the information. I.e. create a new certificate using the same public key. The extensions put in the cert is read from the certificate profile that is used to create the cert, the certificate profile name is also a parameter when requesting a new certificate for a user, so you can have different certificate profiles for your different kinds of users. Cheers, Tomas > On 2/22/06, Ejbca Support <ejb...@pr...> wrote: > >> The problem with private extensions is that you also have to provide an >> ASN.1 definition. What would be possible is to have say support for user >> defined trivial extension like simple strings. Otherwise an x.509 >> extension can be a quite complex beast in asn.1 >> >> /Tomas >> >> yannick quenechdu wrote: >> >>> Tomas, >>> >>> I take advantage of the mail, to indicate that it would maybe be >>> interesting to let create fields in the profiles certificate and EE to >>> allow the addition of private extension. >>> Bar example by allowing the administrator to add empty fields and value, >>> to use for specific needs. >>> >>> Regards, >>> Yannick >>> >>> >>> >>>> Tomas, >>>> >>>> Can you tell me whether or not exntesions are supported in version >>>> 3_2? I need to use the extensions for authorization information. Also, >>>> if extensions are supported, can a group of extensions be modified and >>>> resigned, or does the cert have to be regenerated each time >>>> information is modified? >>>> >>>> Thanks >>>> >>>> Jordan >>>> >>>> >>>> ------------------------------------------------------- >>>> This SF.net email is sponsored by: Splunk Inc. Do you grep through log >>>> files >>>> for problems? Stop! Download the new AJAX search engine that makes >>>> searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! >>>> http://sel.as-us.falkag.net/sel?cmd=lnk&kid3432&bid#0486&dat1642 >>>> _______________________________________________ >>>> Ejbca-develop mailing list >>>> Ejb...@li... >>>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>>> >>>> >>>> >>>> >>> >>> >>> ------------------------------------------------------- >>> This SF.net email is sponsored by: Splunk Inc. Do you grep through log files >>> for problems? Stop! Download the new AJAX search engine that makes >>> searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! >>> http://sel.as-us.falkag.net/sel?cmd_______________________________________________ >>> Ejbca-develop mailing list >>> Ejb...@li... >>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>> >>> >> >> ------------------------------------------------------- >> This SF.net email is sponsored by: Splunk Inc. Do you grep through log files >> for problems? Stop! Download the new AJAX search engine that makes >> searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! >> http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642 >> _______________________________________________ >> Ejbca-develop mailing list >> Ejb...@li... >> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >> >> > > > ------------------------------------------------------- > This SF.net email is sponsored by: Splunk Inc. Do you grep through log files > for problems? Stop! Download the new AJAX search engine that makes > searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! > http://sel.as-us.falkag.net/sel?cmd_______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
From: Jordan R. <jor...@gm...> - 2006-02-22 15:18:50
|
Oh, really? Hmmm. I dont know how interested you are in the background of my problem, but I am working on a distributed authorization framework, which is based on reputation. It is completely web services based and since it relies heavily on X.509 certificates, a web services based CA will be perfect. It will allow easy composition a basic set of services. By design, XML formatted data (denoting a set of past actions), for a specific window of time (to avoid huge certs) is kept in an extension. This data is then used a resource site (who is offering some resource (cpu, mem, hd, whatever...probably via Globus GTK) can use its own flexible policy (language undetermined as of yet...maybe ponder) to decide what, if any, access will be granted. During job execution, a certain defined set of actions are listened for and recorded. These will deatil what happened during the job. This will be recorded using middleware (in a signed binary, so that the resource site is forced cannot tamper with what happened). Upon job completion, a message is sent to the CA of the user (whos job ran on the remote resource) from the remote resource, Then at the end of each job, the CA will compile the various messages (from diff. resource sites for this job) and add that to the users cert. In the global grid scenario of potentially thousands of distributed jobs, CAs will have additional work to perform (but their hierarchical nature should allow this with a couple more CAs for quicker respsonse). The possible issue then, that I see, is that performance and consequently scalability, may suffer. If we assume the generation of a cert is computationally expensive, the design is flawed. However, if we are using the same key pair, does cert generation become computationally cheap? THE BIG QUESTION Is regeneration of a cer (using a previsouly generated key pair, essentially trivial? THE BIG QUESTION Right now I am at the web services part, essentially preparing the framework. Once completed, I will add my java codes (as services) to provide the enhance functionality. I will also create a resource site simulator and a user simulator to provide interactions such as might be experienced in reality. This will allow me to obtain numerical results in a test environment, which can hint at whether or not the architecture is worthy of further pursuit. So, there it is, hope I didnt bore you. I don't think I did. Jordan |
From: Ejbca S. <ejb...@pr...> - 2006-02-22 15:35:19
|
Cool!! Jordan Rivington wrote: <snip> > THE BIG QUESTION > Is regeneration of a cer (using a previsouly generated key pair, > essentially trivial? > THE BIG QUESTION > Yes it is essentially trivial. In a simple performance test on my home workstation with an Athlon64X2 4200+ cpu, 2GB RAM, MySQL database, my CA generated 10-15 certificates every second (using pre-generated key pairs so that key generation does not take any time). Exactly your scenario in other words. After a while of generating those amounts of certificates the database will start getting large off-course, but if you have rather short validity periods of your certificates you can basically remove (pr archive) old expired ones. Cheers, Tomas > Right now I am at the web services part, essentially preparing the > framework. Once completed, I will add my java codes (as services) to > provide the enhance functionality. I will also create a resource site > simulator and a user simulator to provide interactions such as might > be experienced in reality. This will allow me to obtain numerical > results in a test environment, which can hint at whether or not the > architecture is worthy of further pursuit. > > So, there it is, hope I didnt bore you. I don't think I did. > > Jordan > > > ------------------------------------------------------- > This SF.net email is sponsored by: Splunk Inc. Do you grep through log files > for problems? Stop! Download the new AJAX search engine that makes > searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! > http://sel.as-us.falkag.net/sel?cmd_______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
From: Jordan R. <jor...@gm...> - 2006-02-22 16:02:38
|
Actually, the certificates that store the history, should be good for a lifetime. So that works out even better. When you said I should look at the profiles, you meant the hardtoken.profiles? On 2/22/06, Ejbca Support <ejb...@pr...> wrote: > > Cool!! > > Jordan Rivington wrote: > > <snip> > > THE BIG QUESTION > > Is regeneration of a cer (using a previsouly generated key pair, > > essentially trivial? > > THE BIG QUESTION > > > Yes it is essentially trivial. In a simple performance test on my home > workstation with an Athlon64X2 4200+ cpu, 2GB RAM, MySQL database, my CA > generated 10-15 certificates every second (using pre-generated key pairs > so that key generation does not take any time). Exactly your scenario in > other words. > > After a while of generating those amounts of certificates the database > will start getting large off-course, but if you have rather short > validity periods of your certificates you can basically remove (pr > archive) old expired ones. > > Cheers, > Tomas > > > Right now I am at the web services part, essentially preparing the > > framework. Once completed, I will add my java codes (as services) to > > provide the enhance functionality. I will also create a resource site > > simulator and a user simulator to provide interactions such as might > > be experienced in reality. This will allow me to obtain numerical > > results in a test environment, which can hint at whether or not the > > architecture is worthy of further pursuit. > > > > So, there it is, hope I didnt bore you. I don't think I did. > > > > Jordan > > > > > > ------------------------------------------------------- > > This SF.net email is sponsored by: Splunk Inc. Do you grep through log = files > > for problems? Stop! Download the new AJAX search engine that makes > > searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! > > http://sel.as-us.falkag.net/sel?cmd____________________________________= ___________ > > Ejbca-develop mailing list > > Ejb...@li... > > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > > > > > > ------------------------------------------------------- > This SF.net email is sponsored by: Splunk Inc. Do you grep through log fi= les > for problems? Stop! Download the new AJAX search engine that makes > searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! > http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat= =3D121642 > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
From: Ejbca S. <ejb...@pr...> - 2006-02-22 16:06:25
|
No the certificate profiles. /Tomas Jordan Rivington wrote: > Actually, the certificates that store the history, should be good for > a lifetime. So that works out even better. When you said I should look > at the profiles, you meant the hardtoken.profiles? > > On 2/22/06, Ejbca Support <ejb...@pr...> wrote: > >> Cool!! >> >> Jordan Rivington wrote: >> >> <snip> >> >>> THE BIG QUESTION >>> Is regeneration of a cer (using a previsouly generated key pair, >>> essentially trivial? >>> THE BIG QUESTION >>> >>> >> Yes it is essentially trivial. In a simple performance test on my home >> workstation with an Athlon64X2 4200+ cpu, 2GB RAM, MySQL database, my CA >> generated 10-15 certificates every second (using pre-generated key pairs >> so that key generation does not take any time). Exactly your scenario in >> other words. >> >> After a while of generating those amounts of certificates the database >> will start getting large off-course, but if you have rather short >> validity periods of your certificates you can basically remove (pr >> archive) old expired ones. >> >> Cheers, >> Tomas >> >> >>> Right now I am at the web services part, essentially preparing the >>> framework. Once completed, I will add my java codes (as services) to >>> provide the enhance functionality. I will also create a resource site >>> simulator and a user simulator to provide interactions such as might >>> be experienced in reality. This will allow me to obtain numerical >>> results in a test environment, which can hint at whether or not the >>> architecture is worthy of further pursuit. >>> >>> So, there it is, hope I didnt bore you. I don't think I did. >>> >>> Jordan >>> >>> >>> ------------------------------------------------------- >>> This SF.net email is sponsored by: Splunk Inc. Do you grep through log files >>> for problems? Stop! Download the new AJAX search engine that makes >>> searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! >>> http://sel.as-us.falkag.net/sel?cmd_______________________________________________ >>> Ejbca-develop mailing list >>> Ejb...@li... >>> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >>> >>> >> >> ------------------------------------------------------- >> This SF.net email is sponsored by: Splunk Inc. Do you grep through log files >> for problems? Stop! Download the new AJAX search engine that makes >> searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! >> http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642 >> _______________________________________________ >> Ejbca-develop mailing list >> Ejb...@li... >> https://lists.sourceforge.net/lists/listinfo/ejbca-develop >> >> > > > ------------------------------------------------------- > This SF.net email is sponsored by: Splunk Inc. Do you grep through log files > for problems? Stop! Download the new AJAX search engine that makes > searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! > http://sel.as-us.falkag.net/sel?cmd_______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
From: Ejbca S. <ejb...@pr...> - 2006-02-22 14:37:41
|
Off-course x.509 extensions are supported, plenty of them and they have always been supported in EJBCA, since verion 1.0. Look at rfc3280 to see the which extensions the standard provides, ejbca supports many of them. "Private" x.509 extensions defined by the user is not supported by ejbca. The whole idea with x.509 certificates is that you can NOT change any information in the certificate without invalidating the signature. So changing extensions in an already generated certificate is impossible, and it's not because of ejbca, but that is how it is supposed and designed to be in the standard. Perhaps you are asking about something else than the regular x.509 extensions but I don't understand your question? Authorization information is normally not kept in certificates, largely depending on that you can't change the information, but authorization information is regularly changes. There are other things, like Attribute Certificates for this kind of information. Attribute Certificates btw are not supported by ejbca yet. Cheers, Tomas Gustavsson PrimeKey Solutions AB http://www.primekey.se/ Jordan Rivington wrote: > Tomas, > > Can you tell me whether or not exntesions are supported in version > 3_2? I need to use the extensions for authorization information. Also, > if extensions are supported, can a group of extensions be modified and > resigned, or does the cert have to be regenerated each time > information is modified? > > Thanks > > Jordan > > > ------------------------------------------------------- > This SF.net email is sponsored by: Splunk Inc. Do you grep through log files > for problems? Stop! Download the new AJAX search engine that makes > searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! > http://sel.as-us.falkag.net/sel?cmd_______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
From: Jordan R. <jor...@gm...> - 2006-02-22 14:44:22
|
I realize changing the info will invalidate the sig, but if the CA makes the changes and re signs, then whats the issue. I suppose the only way is to create a new cert with same pub/pri key pair with the new information (in the extension). What do you think? On 2/22/06, Ejbca Support <ejb...@pr...> wrote: > > Off-course x.509 extensions are supported, plenty of them and they have > always been supported in EJBCA, since verion 1.0. > Look at rfc3280 to see the which extensions the standard provides, ejbca > supports many of them. > "Private" x.509 extensions defined by the user is not supported by ejbca. > > The whole idea with x.509 certificates is that you can NOT change any > information in the certificate without invalidating the signature. > So changing extensions in an already generated certificate is > impossible, and it's not because of ejbca, but that is how it is > supposed and designed to be in the standard. > > Perhaps you are asking about something else than the regular x.509 > extensions but I don't understand your question? > > Authorization information is normally not kept in certificates, largely > depending on that you can't change the information, but authorization > information is regularly changes. There are other things, like Attribute > Certificates for this kind of information. Attribute Certificates btw > are not supported by ejbca yet. > > Cheers, > Tomas Gustavsson > PrimeKey Solutions AB > http://www.primekey.se/ > > Jordan Rivington wrote: > > Tomas, > > > > Can you tell me whether or not exntesions are supported in version > > 3_2? I need to use the extensions for authorization information. Also, > > if extensions are supported, can a group of extensions be modified and > > resigned, or does the cert have to be regenerated each time > > information is modified? > > > > Thanks > > > > Jordan > > > > > > ------------------------------------------------------- > > This SF.net email is sponsored by: Splunk Inc. Do you grep through log = files > > for problems? Stop! Download the new AJAX search engine that makes > > searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! > > http://sel.as-us.falkag.net/sel?cmd____________________________________= ___________ > > Ejbca-develop mailing list > > Ejb...@li... > > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > > > > > > ------------------------------------------------------- > This SF.net email is sponsored by: Splunk Inc. Do you grep through log fi= les > for problems? Stop! Download the new AJAX search engine that makes > searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! > http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat= =3D121642 > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |
From: Jordan R. <jor...@gm...> - 2006-02-22 14:45:00
|
Since Att certs not supported, this is the path I am looking into now. On 2/22/06, Ejbca Support <ejb...@pr...> wrote: > > Off-course x.509 extensions are supported, plenty of them and they have > always been supported in EJBCA, since verion 1.0. > Look at rfc3280 to see the which extensions the standard provides, ejbca > supports many of them. > "Private" x.509 extensions defined by the user is not supported by ejbca. > > The whole idea with x.509 certificates is that you can NOT change any > information in the certificate without invalidating the signature. > So changing extensions in an already generated certificate is > impossible, and it's not because of ejbca, but that is how it is > supposed and designed to be in the standard. > > Perhaps you are asking about something else than the regular x.509 > extensions but I don't understand your question? > > Authorization information is normally not kept in certificates, largely > depending on that you can't change the information, but authorization > information is regularly changes. There are other things, like Attribute > Certificates for this kind of information. Attribute Certificates btw > are not supported by ejbca yet. > > Cheers, > Tomas Gustavsson > PrimeKey Solutions AB > http://www.primekey.se/ > > Jordan Rivington wrote: > > Tomas, > > > > Can you tell me whether or not exntesions are supported in version > > 3_2? I need to use the extensions for authorization information. Also, > > if extensions are supported, can a group of extensions be modified and > > resigned, or does the cert have to be regenerated each time > > information is modified? > > > > Thanks > > > > Jordan > > > > > > ------------------------------------------------------- > > This SF.net email is sponsored by: Splunk Inc. Do you grep through log = files > > for problems? Stop! Download the new AJAX search engine that makes > > searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! > > http://sel.as-us.falkag.net/sel?cmd____________________________________= ___________ > > Ejbca-develop mailing list > > Ejb...@li... > > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > > > > > > ------------------------------------------------------- > This SF.net email is sponsored by: Splunk Inc. Do you grep through log fi= les > for problems? Stop! Download the new AJAX search engine that makes > searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! > http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat= =3D121642 > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop > |