diff options
| author | Rob Austein <sra@hactrn.net> | 2007-01-22 15:44:49 +0000 |
|---|---|---|
| committer | Rob Austein <sra@hactrn.net> | 2007-01-22 15:44:49 +0000 |
| commit | 80b1e6a46df84916ba8a6532af49481cbf345c47 (patch) | |
| tree | 1fa13697e5f091c7c0230424afe65f1fe5080ae3 | |
| parent | 43ba0bde3eab26ca98b48d50c94c67835a010213 (diff) | |
Footnote
svn path=/scripts/xmlsec-demo.sh; revision=472
| -rwxr-xr-x | scripts/xmlsec-demo.sh | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/scripts/xmlsec-demo.sh b/scripts/xmlsec-demo.sh index b27ad217..dde26db3 100755 --- a/scripts/xmlsec-demo.sh +++ b/scripts/xmlsec-demo.sh @@ -9,6 +9,10 @@ # Basic idea of the demo is to create a four level deep cert chain, # use that to sign an XML document, then demonstrate that it verifies. +# Subsequent discussion on the mailing list concluded that xmlsec (the +# protocol, not just this particular implementation) is hopelessly +# broken and that we should just use CMS (aka PKCS#7 ng). Done. + set -xe : ${input=input.xml} ${unsigned=unsigned.xml} ${signed=signed.xml} |