GSP
Quick Navigator

Search Site

Unix VPS
A - Starter
B - Basic
C - Preferred
D - Commercial
MPS - Dedicated
Previous VPSs
* Sign Up! *

Support
Contact Us
Online Help
Handbooks
Domain Status
Man Pages

FAQ
Virtual Servers
Pricing
Billing
Technical

Network
Facilities
Connectivity
Topology Map

Miscellaneous
Server Agreement
Year 2038
Credits
 

USA Flag

 

 

Man Pages


Manual Reference Pages  -  THUMBPRINT (7)

NAME

thumbprint - public key thumbprints

CONTENTS

Description

DESCRIPTION

Applications in Plan 9 that use public keys for authentication, for example by calling tlsClient and okThumbprint (see pushtls(3)), check the remote side’s public key by comparing against thumbprints from a trusted list. The list is maintained by people who set local policies about which servers can be trusted for which applications, thereby playing the role taken by certificate authorities in PKI-based systems. By convention, these lists are stored as files in /sys/lib/tls/ and protected by normal file system permissions.

Such a thumbprint file comprises lines made up of attribute/value pairs of the form attr=value or attr. The first attribute must be x509 and the second must be sha1={hexchecksumofbinarycertificate}. All other attributes are treated as comments. The file may also contain lines of the form #includefile

For example, a web server might have thumbprint x509 sha1=8fe472d31b360a8303cd29f92bd734813cbd923c cn=*.cs.bell-labs.com

SEE ALSO

pushtls(3)
Search for    or go to Top of page |  Section 7 |  Main Index


THUMBPRINT (7) -->

Powered by GSP Visit the GSP FreeBSD Man Page Interface.
Output converted with manServer 1.07.