-
### What happened?
Unable to authenticate using a client certificate; error message `the Client Certificate Path is not a valid pfx file: pkcs12: unknown digest algorithm: 2.16.840.1.101.3.4.2.1]`.…
-
This was originally reported to ZAP via BugCrowd.
We rated it as a LOW vulnerability and gave the reporter permission to disclose it, which they have done as [CVE-2022-27820](https://nvd.nist.gov/v…
-
Hello,
We're working with GRR v3.3.0.4, installed on Ubuntu from the release debs.
And we are facing issues when dealing with some requirements during our deployments:
- First, we need to be …
-
This issue was migrated from [Pagure Issue #2953](https://pagure.io/dogtagpki/issue/2953). Originally filed by **[tvaughan](https://pagure.io/user/tvaughan) (@trevor-vaughan)** on *2018-03-02 10:20:55…
-
As it stands today Logstash does not check if a certificate has been revoked. This means if a certificate has been compromised, the entire trust chain may need to be replaced. To simplify the security…
-
### Description
I have a gitea repo setup with a git+https push-mirror enabled. Trying to update the remote repo results in an error with the tooltip text: `push failed: fatal: unable to access 'ht…
-
After having experimented with RadSec locally using two OCI instances, several observations and questions come to mind.
### Observations
1. Connections are mutually authenticated (so mTLS works …
-
@kenji-acumen **Opening this GitHub issue to discuss if NDcPP v3.0 should add support for OCSP stapling.**
**MINT, please feel free to add your comments whether NDcPP v3.0 should support this or…
-
### What is the areas you would like to add the new feature to?
Notation CLI
### Is your feature request related to a problem?
The CAPABILITIES's value `[SIGNATURE_GENERATOR.RAW]` is not user…
-
When using shinycannon against a https URL with a valid trust chain of certificates recognised by major webbrowsers (in this case involving TERENA SSL CA 3 and DigiCert Assured ID Root CA, which do no…