Philipp Gühring wrote: > Hi Max, [...] >> Are you using Apache to proxy requests to the OCSP ? > > Yes. In a lot of corporate environments, only Port 80 is available for the [...] > ocsp response through ocsp.
I guess that is due to the fact that you have to use only one IP address, right ? Otherwise you could have the OCSP running at port 80 without the need to proxing it through your main webserver. > I guess it´s not an issue for users of OpenCA internally, when they can tell [.... > We had even documented how to do that proxying with Apache here: > http://wiki.cacert.org/wiki/OcspResponder Another possibility is the timeout for a request... now it is quite small, I should probably increase it... or set a parameter for a maximum timeout for a request reading. I will try to test the ocsp behind an Apache webserver if I have time to setup the proxy... I will let you know... Cheers, Max. ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ OpenCA-Devel mailing list OpenCA-Devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openca-devel
