CRL handling?

To: debian-security@lists.debian.org
Subject: CRL handling?
From: Hein Roehrig <debian@hein.roehrig.name>
Date: Thu, 19 Feb 2004 12:20:00 -0700
Message-id: <[🔎] 878yiyev1b.fsf@qaip3.hein.roehrig.name>

Hi *,

am I right in that there is currently no standard way for handling
certificate revocation lists (CRL, RFC 2459) for X.509 certificates?

It would be nice if CRLs in /etc/ssl/... could be updated
automatically by a cron job that invokes openssl ocsp (RFC 2560)
regularly and/or maintain official lists of revoked certificates in
the package.

Should this be part of ca-certificates or a separate package?

Thanks,
Hein


-- 
http://hein.roehrig.name

Reply to:

Prev by Date: Re: DSA 438 - bad server time, bad kernel version or information delayed?
Next by Date: Re: DSA 438 - bad server time, bad kernel version or information delayed?
Previous by thread: Re: DSA 438 - bad server time, bad kernel version or information delayed?
Next by thread: Carzy braagins on xnaax
Index(es):
- Date
- Thread