Michael Bell wrote:
>
> Hi,
>
> I see that the OCSPD don't take the status from the databases of OpenCA.
> So I write a small script which do this job (so we must not implement
> the code for the different db-drivers in c/c++). It is an extract of the
> RAServer and actually quite simple. I attached the code.
This could be a good solution... indeed this could be time-consuming on
multiple and frequest requests... but saves a lot of work (that will have
to be done... ).
I am evaluationg the opportunity of making the OCSPd a pluggable module
for Apache Web Server so as to be able to share the 80 port between the
Web server and the OCSP responder, also the HTTP parsing could be handled
by httpd internals (surely better (!!!)).
> You can call the function via:
>
> ./get_status CERTIFICATE "01"
>
> The output is
> -1 to -7 on error
> VALID, EXPIRED, REVOKED, SUSPENDED, ARCHIVIED on success
>
> The return codes are
> 0 on success
> -1 to -7 on failure
>
> Another problem I detected is the status ARCHIVIED. Should we fix this
> (ARCHIVED)?
??? What's the problems related with the ARCHIVIED status ?
--
C'you,
Massimiliano Pala
--o-------------------------------------------------------------------------
Massimiliano Pala [OpenCA Project Manager] [EMAIL PROTECTED]
[EMAIL PROTECTED]
[EMAIL PROTECTED]
http://www.openca.org Tel.: +39 (0)59 270 094
http://openca.sourceforge.net Mobile: +39 (0)347 7222 365
S/MIME Cryptographic Signature
