> > How do I revoke one personal certificate created for my CA?
>
> By creating a CRL for your CA where the pariticular certificate is revoked.
> With the current CVS snapshots of OpenSSL you already can use "openssl ca
> -revoke <certfile>" to change the index.txt database file.
To inform your browser of the revokation, you have to generate a new crl,
and download it (to inform your Web-Server, you'll need mod_ssl 2.3.0 or
the current snapshot).
oki,
Steffen
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
