Henri wrote: > With the last version of Courier-imap I successfully configured user > certificate authentication. It works well with the SASL external > method. > > However, certificate authentication is valuable only if there is a CRL > check to detect revoked certificate. > > It doesn't seem that this feature is yet implemented in Courier-imap. > > Has someone an idea in order to set up this CRL check? by adding an > external software?
You should look at OCSP to achieve what you are looking for, it is not dependent on a CA issuing a CRL at some vague policy based frequency and gives you the result you are looking for. There are a number of open source implementations to choose from. HTH, -Enda. ------------------------------------------------------------------------------ SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ _______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
