artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 18f5074) | patch
Add skiplist option to steer clear of skiplisted hosts
authorjob <job@openbsd.org>
Mon, 27 Jun 2022 10:18:27 +0000 (10:18 +0000)
committerjob <job@openbsd.org>
Mon, 27 Jun 2022 10:18:27 +0000 (10:18 +0000)
commit5a2857b60bf0135a745069460ea8351096188344
tree5529853a349a68caffb1e8bb173e63e456b12144tree | snapshot
parent18f507449204fa59c39f53d7557035f008bf65f9commit | diff
Add skiplist option to steer clear of skiplisted hosts

Blocking outbound connections towards RPKI publication servers based
on IP or IPv6 address in external instrumentation like HTTP proxies
or pf(4) rules is somewhat unwieldy. It might be easier for operators
if we offer a mechanism that cuts at the CA cert SIA parsing step.

OK claudio@ tb@
usr.sbin/rpki-client/extern.h diff | blob | history
usr.sbin/rpki-client/main.c diff | blob | history
usr.sbin/rpki-client/rpki-client.8 diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim