[stunnel-users] Common Name checking
mbolton at boltz.co.uk
Wed Jul 15 09:46:11 CEST 2009
Thanks for your reply, however a CRL will only help if we find out
We want to prevent it from happening of course, but we want to remove
the incentive as well. With a CRL, there is a window of opportunity
between the time the cert is stolen and when the theft is discovered.
How can we close that window?
On 14 Jul 2009, at 14:13, Michal Trojnara <Michal.Trojnara at mobi-
> Mark Bolton <mbolton at boltz.co.uk> wrote:
>> Is there anyway we can use stunnel to help us guard against this
>> 'stolen cert' situation or if not what else could we do?
> Sure. CRLs are designed exactly for this purpose.
> Best regards,
> stunnel-users mailing list
> stunnel-users at mirt.net
More information about the stunnel-users