[stunnel-users] Verify=3 restart needed ?

• Previous message (by thread): [stunnel-users] Verify=3 restart needed ?
• Next message (by thread): [stunnel-users] Verify=3 restart needed ?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Edouard Dessioux wrote:

> I wanted to know if the stunnel needs to be restarted
> after a certificates has been removed ?

This is *not* the way X.509 was designed to perform certificate
revocation.  Use CRLs or OCSP instead.

Also see:
http://stunnel.mirt.net/pipermail/stunnel-users/2004-December/000192.html
http://en.wikipedia.org/wiki/Certificate_revocation_list
http://en.wikipedia.org/wiki/Online_Certificate_Status_Protocol

Best regards,
    Mike

• Previous message (by thread): [stunnel-users] Verify=3 restart needed ?
• Next message (by thread): [stunnel-users] Verify=3 restart needed ?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]