I though so as well but I cannot find any optionn in Netscape 4.7 to set
that. In IE there is a "check server certificate revocation" under internet
options but presumably this only checks CRL of known CA's. Anyone know how
to configure browsers to check CRLs of arbitrary CAs or how do CAs maintain
publicly accessible CRLs.
thanks for any help.
min
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Simon Weijgers
> Sent: Thursday, February 01, 2001 12:33 PM
> To: [EMAIL PROTECTED]
> Subject: Re: CRL for server certificates
>
>
> Hi,
>
> > How does one point a browser to a CA's CRL so that it can check is a
> > server's certificate has been revoked? Looking through documentation for
> > Apache and mod_ssl all mention of CRLs seems to be incontext of *client
> > certificate authentication* and no mention is made of "server
> certificate
> > authentication* by the client browser using CRLs.
>
> I suspect this has to be configured on the browser side rather than on the
> server side.
>
> Cheers,
>
> Simon
>
> ______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
>
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
