[Mono-list] Preview 2.6.6
Miguel de Icaza
miguel at novell.com
Mon Jul 12 15:25:58 EDT 2010
> Now, is there a safe way to implement this work-around? I'm not much
> of a security wonk, so what can I check in the cert to accept only
> Google's? I see properties like Issuer, Thumbprint, and
> GetRawCertData. Can I use any of these to verify, or at least do
> slightly more than "return true" for all certs?
Here you can find information on this subject:
http://www.mono-project.com/UsingTrustedRootsRespectfully
And also:
http://www.mono-project.com/FAQ:_Security
Miguel
More information about the Mono-list
mailing list