Hi All, I am also waiting for any replies for following questions from last few months. Please anyone can help in this urgently. Might be Steve can you answer for this please. ---------------------------- We have Netscape Certificate Server as CA and keeps track of CRL. In my server(developed using stunnel and openssl) after getting the certificate from client i need to check whether client certificate is present in this Netscape CS Revocation List and then based on that the access to be given to the client. I have got the CRL onto a binary file cms.crl How do i support this CRL in my server? Is there any functions available in reading the cms.crl and checking against cms.crl file after getting the certificate from client. ------------------------------ Does openssl-0.9.5 support crl check when verifying a client certificate for SSL connections? ----------------------------- Is anybody doing CRL checking on client certs in OpenSSL server apps? What's involved in this? Does anyone know of a document that gives a cookbook approach? Is there a toolkit someplace that makes it simple? ------------------------------ Thanks Asha This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please immediately delete it and all copies of it from your system, destroy any hard copies of it and notify the sender. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. CREDIT SUISSE GROUP and each of its subsidiaries each reserve the right to monitor all e-mail communications through its networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of any such entity. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
