[Mono-list] Mono trust stire location
Sunil Kumar
sunilk@novell.com
Fri, 09 Apr 2004 10:23:37 -0600
Anyone has any idea, Why X509Store class in Mono.Security.X509
Namespace doesn't have any public constructor? I am not able to use this
class to Read the certificates stored in a private trust store ( not
the one created using certmg) in my Application.
Sunil.
>>> Sebastien Pouliot <spouliot@videotron.ca> 4/8/2004 3:42:07 PM >>>
Sunil,
> Is it possible that we can speicfy the location where we want to
> create the trust store.
Maybe ;-) It's all depend on *why* the location needs to be specified,
like:
- changing the directory name isn't hard (e.g. ~/.mono/certificates/...
or
something more fd.org-friendly);
- having a different directory structure per user requires to add
configuration files (and tools/documentation/...) but makes it harder
to
change the implementation later. For example a later Mono release could
use
an implementation not based on a file system (a database, a directory,
a
smartcard ...).
Problem is that if/when application depends on a specific directory
then we
have conflict problems. That's why I said it's better to use certmgr to
do
the job.
Note that the same pattern holds true for key pairs and the GAC - you
shouldn't depend on their location but use the supplied tools to
manipulate
them.
In this case (trusted certificates being used for SSL/TLS) it's also
possible to add application specific code (in the validation callback)
to
check for untrusted certificates and then search another (application
specific) location for roots (but that would be in addition to the
existing
roots).
Sebastien Pouliot
http://pages.infinit.net/ctech/poupou.html
-----Original Message-----
From: Sunil Kumar [mailto:sunilk@novell.com]
Sent: 8 avril 2004 16:57
To: mono-list@lists.ximian.com; spouliot@videotron.ca
Subject: RE: [Mono-list] Mono trust stire location
Hi Sebastie,
Is it possible that we can speicfy the location where we want to
create the trust store.
SUnil.
>>> Sebastien Pouliot <spouliot@videotron.ca> 4/8/2004 2:50:22 PM >>>
Hello Sunil,
All user certificate stores are located under
~/.mono/certs/
The trusted store is
~/.mono/certs/Trust/
But this could change between release, so it's better to use certmgr
to
add/remove certificates.
Sebastien Pouliot
http://pages.infinit.net/ctech/poupou.html
-----Original Message-----
From: mono-list-admin@lists.ximian.com
[mailto:mono-list-admin@lists.ximian.com]On Behalf Of Sunil Kumar
Sent: 8 avril 2004 16:42
To: mono-list@lists.ximian.com
Subject: [Mono-list] Mono trust stire location
Hi ,
Does anyone Knows the location of the mono trust store? i.e when I
add a certificate using " certmgr add -c Trust
<TrustRootCertificate>"
where does my TrustRootCertificate gets added.
Regards,
Sunil.
_______________________________________________
Mono-list maillist - Mono-list@lists.ximian.com
http://lists.ximian.com/mailman/listinfo/mono-list
_______________________________________________
Mono-list maillist - Mono-list@lists.ximian.com
http://lists.ximian.com/mailman/listinfo/mono-list