Skip to Content.

cat-users - Re: [cat-users] Automatic fetch of CAT tools for our institution?

cat-users AT lists.geant.org

Subject: The mailing list for users of the eduroam Configuration Assistant Tool (CAT)

List archive


Re: [cat-users] Automatic fetch of CAT tools for our institution?


Chronological Thread 
    < Chronological >      < Thread >
  • From: Stefan Winter <stefan.winter AT restena.lu>
  • To: Tomasz Wolniewicz <twoln AT umk.pl>, Vidar Kværnø Stokke <vidar.stokke AT ntnu.no>, Steve Bohrer <skbohrer AT simons-rock.edu>, "cat-users AT geant.net" <cat-users AT geant.net>
  • Subject: Re: [cat-users] Automatic fetch of CAT tools for our institution?
  • Date: Thu, 05 Jun 2014 15:19:17 +0200
  • List-archive: <http://mail.geant.net/pipermail/cat-users/>
  • List-id: "The mailing list for users of the eduroam Configuration Assistant Tool \(CAT\)" <cat-users.geant.net>
  • Openpgp: id=8A39DC66; url=http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC0DE6A358A39DC66
Hi,

> cat.eduroam.org is just one trusted host you would need to provide
> access to. This would not really lower your security.

Well, it is a *bit* more work than that (but not much). You also need to
enable the user's browser to consult CRLs and OCSP for our server
certificate, which is yet another host at ... Comodo or so? If those
host their CRLs on a CDN, then the access list could get a little nasty.
Nothing that is impossible to handle though.

Greetings,

Stefan

--
Stefan WINTER
Ingenieur de Recherche
Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et
de la Recherche
6, rue Richard Coudenhove-Kalergi
L-1359 Luxembourg

Tel: +352 424409 1
Fax: +352 422473

PGP key updated to 4096 Bit RSA - I will encrypt all mails if the
recipient's key is known to me

http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC0DE6A358A39DC66

Attachment: 0x8A39DC66.asc
Description: application/pgp-keys

Attachment: signature.asc
Description: OpenPGP digital signature


Archive powered by MHonArc 2.6.19.

Top of Page