[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #17579 [Tor]: Split tor-gencert into "make cert" and "sign" portions

Subject: [tor-bugs] #17579 [Tor]: Split tor-gencert into "make cert" and "sign" portions
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Tue, 10 Nov 2015 17:55:16 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 10 Nov 2015 12:55:25 -0500
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#17579: Split tor-gencert into "make cert" and "sign" portions
-----------------------------+--------------------------------
     Reporter:  nickm        |      Owner:
         Type:  enhancement  |     Status:  new
     Priority:  Medium       |  Milestone:  Tor: 0.2.8.x-final
    Component:  Tor          |    Version:
     Severity:  Normal       |   Keywords:
Actual Points:               |  Parent ID:
       Points:               |    Sponsor:
-----------------------------+--------------------------------
 The only part of tor-gencert that wants to stay offline is the part that
 actually uses the master identity key to sign the certificate.  All the
 rest of generating the cert could be done online.

 If we made those changes, we would allow operators to leave their offline
 gencert setups unmaintained for a very very very long time, which would
 make it easier to keep master identity keys offline.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17579>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: [tor-bugs] [Tor Bug Tracker & Wiki] Batch modify: #17272
Next by Author: Re: [tor-bugs] #17337 [DirAuth]: urras is down
Previous by thread: [tor-bugs] [Tor Bug Tracker & Wiki] Batch modify: #17272
Next by thread: [tor-bugs] #17580 [Tor Messenger]: Add IPC for client so other programs can import/export messages
Index(es):
- Author
- Thread