On Mar 30, 2010, at 15:23 , Alon Bar-Lev wrote: > Smartcards are usually exists at client side, so it has nothing to do > with mod_ssl. > All your questions are related to browsers. Why so?
I would of course not suggest running a real life web server against a smart card or USB token, but theoretically it can be done. If somebody writes a tutorial on how to use engine_pkcs11 with mod_ssl and OpenSC PKCS#11 (or anything else using OpenSC PKCS#11), I would read it with great interest. I can understand somebody wishing to establish end2end hardware backed SSL tunnels, either over SSL (HTTP? STunnel?) or over SSH (why can't I easily run my home SSH server against a USB dongle?) I would not suggest HTTP for it, but PKCS#11 support in stunnel would be admirable. > 2010/3/30 Jean-Michel Pouré - GOOZE <jmpo...@gooze.eu>: >> Hello, >> >> I would like to write a tutorial explaining how to configure Apache2 and >> mod_ssl to use smartcards. >> >> My only question is: in a production environment, there is several SSL >> connections at once. Can OpenSC handle high load? Or is OpenSC + mod_ssl >> only for small and very secure operations? Any comments welcome. >> >> Kind regards >> -- >> Jean-Michel Pouré - jmpo...@gooze.eu >> >> _______________________________________________ >> opensc-devel mailing list >> opensc-devel@lists.opensc-project.org >> http://www.opensc-project.org/mailman/listinfo/opensc-devel > _______________________________________________ > opensc-devel mailing list > opensc-devel@lists.opensc-project.org > http://www.opensc-project.org/mailman/listinfo/opensc-devel -- Martin Paljak http://martin.paljak.pri.ee +3725156495 _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
