-
**Github username:** @hxaro
**Twitter username:** --
**Submission hash (on-chain):** 0xbd7c26ae4f2064388b6964def5cdafd2ea51ac76d1f069281637c99568b97cb3
**Severity:** medium
**Description:**
## Descr…
-
as it was noted in the description of PR #2289 , the `Recursor` does *not* cache the results of each step of the chain of trust validation process. if it did, the `Recursor` could avoid performing sig…
-
### Related Problem
Background: Supply chain attacks are becoming an increased vector for compromise.
Most recently, the open source library xz was compromised via a bad actor who inserted malic…
-
**Describe the bug**
The various bug reports on API being down are related to this. Essentially, if the user router DNS resolver is forcing DNSSEC validation, it fails because of incorrect DNS config…
-
### Describe the feature you'd like supported
We support a number of scenarios related to certificates (and will have more coming with client certs in the queue) but we have minimal testing for the…
-
Request: Please establish a cryptographic chain of trust whenever the key that signs Monero's software releases changes.
### Problem
I haven't used monero for a few years. Last time I used it, t…
-
I'm using the RabbitMQ C# Client, which under the hood uses `SslStream`. I'm having an issue where clients are unable to authenticate using x509 certificates if intermediate certificates are involved …
-
I forward a question here that I hear many times, which I think we should examine one more time before this standard is published.
The problem here is that OpenID federation includes tools to alter…
-
### Describe the bug
Sharing a vault to a node ID causes this log in the agent logs:
```
WARN:polykey.PolykeyAgent.NotificationsManager:Could not send VaultShare notification to vqsq2ca7vjbsi…
-
I have a certification authority. Its cert is in `cacert.pem`. That CA signed both my server cert and a client cert.
Imagine I store a server key in `server.pem` and a server cert in `server.key`.
…