sternmarc at lycos
Aug 8, 2005, 6:35 AM
Post #1 of 1
(341 views)
Permalink
|
|
CRL validation and OpenSSL
|
|
It appears that Apache does not use the built-in mechanism from OpenSSL for CRL validation, but it implements its own one (I guess because the one from OpenSSL was not complete enough some time ago ?).
It also seems that OpenSSL CRL validation is now much more complete (IDP, delta CRL, etc.).
Isn't it time to switch to OpenSSL one ?
It should be a kind of simplification in the code, no ?
|
