vokac
vokac
Can we trust all OP not to accidentally add conflicting group name or become compromised? I don't like the idea that any other OP can potentially define access to our...
Unfortunately somebody from TRIUMF read our meeting notes and already replaced problematic certificate. I'll try to get this certificate for you...
Actually I still have problematic certificate that was installed on `dpool49.lcg.triumf.ca` ``` -----BEGIN CERTIFICATE----- MIIFsDCCBJigAwIBAgIDAJnCMA0GCSqGSIb3DQEBCwUAMEgxCzAJBgNVBAYTAkNB MQ0wCwYDVQQKEwRHcmlkMSowKAYDVQQDEyFHcmlkIENhbmFkYSBDZXJ0aWZpY2F0 ZSBBdXRob3JpdHkwHhcNMjAwNzA3MTUxNjA1WhcNMjEwODA2MTUxNjA1WjA8MQsw CQYDVQQGEwJDQTENMAsGA1UEChMER3JpZDEeMBwGA1UEAxMVZHBvb2w0OS5sY2cu dHJpdW1mLmNhMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzkbzqnXl tzD86CQp90IJqrR4Pz7914Trz78D4pAhvTPyMrDrw6T3cYQMDS6z9mf38fEmCB1h 7Nmgqv+/l0coUbQwDPTgnvJ0PhbMC5Ls3olwdGBt/kUXMww2wV+TDxVWxyPm0SPO IhK2LGKJKL4ejIw4NNTTGGWT50f6cv4XAKQYksE+APM3mo1y9h2YzyRod2pP0UMS l3Rj2n4PblMgOVMXoph9gyt/9DiUZN1H6xPiXhn8y/q6C1+/8MSBAicaHEIOVVzx ZND/GKaT1bD1PuvspzFaKg+7wiC1LJHdGtX45ZtgPCCJPfV5oq7yZwpJltkq9Vnk u8QK3MueF0azvHX5FmAhT/sjgcK/04qLN9P5qFhdz4iV8HT39JENSXRSDw+BsXhK g6dpXdfnt0+mAEIy8ZtlQ5vtsNiOCLYoECt6gM2F9GPq6xip7aP9Bal1wE6H0FCv ENVH2NNNo0XnJUMViGOUOhKfaxMN+Oqmx2UYMVFAJN4kvI0OMo5H/n9VSsQrTbuc Y1odwv3Rp3cfzouHRvH8HFpb4dn/3qJY5ZqRzhn3Fsk7lMrjq6W/ezB8iVBdhH2E knJvRSz27aE3B0n6LfR3MFRCloeum62ROKVItwxaREX417HJJAnZe0Gw1UwufRtM j1p+N9J8rT/tiNEW+5r/Etsr13FpOj2npD0CAwEAAaOCAa0wggGpMAwGA1UdEwEB...
I guess library used by dCache tries to validate everything ... anyway, TRIUMF already replaced problematic certificate and because failure with such certificate is technically correct behavior (invalid mail in...
letsencrypt certificates (with policy files) are by default distributed in `osg-ca-certs` package.
VOMS importer script must be improved to synchronize also AUP signature time before fix for this issue gets deployed.
VOMS importer script must be improved to synchronize also AUP signature time before fix for this issue gets deployed.
I assigned this task to me myself, because it is not comfortable to use packages outside of normal distribution channels. It took some time to have a response for first...
OK, I agree that GUI is important for end users, but I'm probably too focused on WLCG token transition timeline where we don't expect users to really use tokens for...
No, because I did not spend enough time understanding all the details that comes with different licenses. Personally I prefer widely used/known licenses like Apache 2.0, newer BSD, Mozilla 2.0...