Hi,
> revocation verification. When we select this and trying to connect to a
> SSL server, it is trying to retrieve CRL distribution point and obtain
> CRL to verify this CA certificate. But I have not seen such provision in
> Netscape. Like wise are there any settings related to CRL we can do in
> both browsers and also Netscape messenger and Outlook Express. Any help
> on this is highly appreciated. Regards
Did your test with IE5.0 turned out to be a succes?
I have looked into this problem for NS and IE5.0, most desirable would be a
url (crl distribution point) that resides in the certificate itself.
However, it is my experience the certificate implementation in each browser
(IE5.0, NS4.7 and Opera4.6) just sucks :(.
They all contain some of the desired functionality but none of them have
*all* desired functionality. Amongst them crl verification. So no, we
don't have an idea on how to do this generic for all widely used browsers :(
Jan
--
alive=true
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
