RE: 4485:error:27069070:OCSP routines:OCSP_basic_verify:root ca not trusted:ocsp_vfy.c:148:

Eisenacher, Patrick Tue, 23 Mar 2010 12:17:01 -0700

Hi Steve,

> -----Original Message-----
> From: Dr. Stephen Henson
>
> There are two automatic trust models for OCSP responder
> certificates. One is the CA key that signed the
> certificate also signs responses: that isn't
> recommended for security reasons.


can you please elaborate on this?

Thank you,
Patrick Eisenacher
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majord...@openssl.org

RE: 4485:error:27069070:OCSP routines:OCSP_basic_verify:root ca not trusted:ocsp_vfy.c:148:

Reply via email to