mosquitto-users team mailing list archive

Thread
Date

Re: Best practices for tls_set in Python

To: Alexander Bolotnov <abolotnov@xxxxxxxxx>
From: "Jack O'Connor" <oconnor663@xxxxxxxxx>
Date: Mon, 11 Feb 2013 14:04:27 -0800
Cc: mosquitto-users@xxxxxxxxxxxxxxxxxxx
In-reply-to: <CACq0ojzeyC1iYmrch1pAs4Xqec6eGQhji_tQxkOPSemA1X1K4A@mail.gmail.com>

Thanks for the reply, and I meant to follow up sooner. Does that mean that
every application that uses the SSL features of Mosquitto ships its own
copy of the certs file? (And by extension, that every app is independently
responsible for keeping that file up to date?)


On Tue, Feb 5, 2013 at 6:02 AM, Alexander Bolotnov <abolotnov@xxxxxxxxx>wrote:

> You can symlink or copy it to /etc/ssl/cert for that. There's probably a
> bunch of certs already anyway :)
>
>
> Sasha Bolotnov
> www.bolotnov.info
>
>
>
> On Tue, Feb 5, 2013 at 4:12 PM, Jack O'Connor <oconnor663@xxxxxxxxx>wrote:
>
>> The tls_set API requires a path to a certificate authorities file. I can
>> download a file of the right type from mozilla or somewhere, but I'm
>> wondering if it's really appropriate to include my own CA list in the
>> project. Is there a standard way to get this information from the OS
>> instead, for example in Ubuntu? Thanks for your help.
>>
>> -- Jack O'Connor
>>
>> --
>> Mailing list: https://launchpad.net/~mosquitto-users
>> Post to     : mosquitto-users@xxxxxxxxxxxxxxxxxxx
>> Unsubscribe : https://launchpad.net/~mosquitto-users
>> More help   : https://help.launchpad.net/ListHelp
>>
>>
>

Follow ups

Re: Best practices for tls_set in Python
From: Roger Light, 2013-02-11

References

Best practices for tls_set in Python
From: Jack O'Connor, 2013-02-05
Re: Best practices for tls_set in Python
From: Alexander Bolotnov, 2013-02-05