diff options
Diffstat (limited to 'scripts/xmlsec-demo.sh')
| -rwxr-xr-x | scripts/xmlsec-demo.sh | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/scripts/xmlsec-demo.sh b/scripts/xmlsec-demo.sh index b27ad217..dde26db3 100755 --- a/scripts/xmlsec-demo.sh +++ b/scripts/xmlsec-demo.sh @@ -9,6 +9,10 @@ # Basic idea of the demo is to create a four level deep cert chain, # use that to sign an XML document, then demonstrate that it verifies. +# Subsequent discussion on the mailing list concluded that xmlsec (the +# protocol, not just this particular implementation) is hopelessly +# broken and that we should just use CMS (aka PKCS#7 ng). Done. + set -xe : ${input=input.xml} ${unsigned=unsigned.xml} ${signed=signed.xml} |