[Openswan Users] {Disarmed} Re: NSS mandatory?

Richard Pickett richard.pickett at csrtechnologies.com
Sun Jul 24 13:49:19 EDT 2011


>
>
> 3) Turns out that switching to NSS is not that terribly difficult and it
> then removes the burden of manually maintaining Openswan from there
> onward as newer releases come out.


Yep. That's the route I'm taking.


>  It ends up taking just a little bit
> of time to convert from the flat file X.509 certs and storing those same
> certs in the NSS database but, once it's done, you no longer have to
> worry about an update breaking your setups.


All I'll really need to import is the ca cert and the server's own cert/key,
right?

Thanks for your help.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20110724/be9718cd/attachment.html 


More information about the Users mailing list