Hi together, @ Diego: Thanks, that would be nice if you could support me with your source code and some explanation. Your trick sounds very interesting.
@ all Sorry for having confused some of you. My main idea was to automatically generate an CRL after a periodic time and send it for example via scp to my host where the OCSPD is running. My Cisco routers reject an ipsec connection when they have no OCSP or CRL available, and I don't want to disable the revocation checking in cases when both sources are not available. To ensure that I always have an up to date CRL I would use this automatic method. Security is not the problem. The password can be saved on disk because the server will be located behind a firewall that only accepts outgoing scp traffic and only an administrator will have access to the CA. Kind regards, Matthias. ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
