Hi, I have a test SSL web server that is working fine. With my OpenSSL based CA, I revoked the certificate that the web server is using, and I generated a CRL, which was then served by the web server. Netscape pulled it down OK, and now correctly prevents connections to this server. However with IE, it still allows connections. I downloaded the CRL, and saved it to disk. I used the right mouse button to select "Install CRL". My IE5 options state that it should check for the server certificate revocation. Yet it still allows the connections. Any ideas why? I appreciate that this isn't related to OpenSSL, but after a day of searching the net for answers, this is most definately the best place to ask... and it makes a change from the compilation or cert generation questions :-) -- Dave ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
