subject:"\[gnutls\-help\] CTL generation"

Re: [gnutls-help] CTL generation

2017-08-11 Thread Nikos Mavrogiannopoulos

On Thu, Aug 10, 2017 at 5:13 PM, Gregory Sloop  wrote:
> I *think* I understand how to use certtool to generate a CRL - however,
> trying to get explicit confirmation.
> In the case where you have more than one revoked cert:
> Will it work to concatenate all the revoked certs into a single file and
> include all the certs with one --load-certificate
> file-of-concatenated-certs.pem ? [It sure looks that way, but just double
> checking.]

That's the idea. Note however that some old versions of certtool had a
cap on the file size they were reading, so they could choke on large
files and generate incomplete CRLs. If you use anything later than
3.3.18 you should be fine.

regards,
Nikos

___
Gnutls-help mailing list
Gnutls-help@lists.gnutls.org
http://lists.gnupg.org/mailman/listinfo/gnutls-help

[gnutls-help] CTL generation

2017-08-10 Thread Gregory Sloop

I *think* I understand how to use certtool to generate a CRL - however, trying 
to get explicit confirmation.

In the case where you have more than one revoked cert:
Will it work to concatenate all the revoked certs into a single file and 
include all the certs with one --load-certificate 
file-of-concatenated-certs.pem ? [It sure looks that way, but just double 
checking.]


TIA
-Greg
___
Gnutls-help mailing list
Gnutls-help@lists.gnutls.org
http://lists.gnupg.org/mailman/listinfo/gnutls-help

Re: [gnutls-help] CTL generation

[gnutls-help] CTL generation

2 matches

Site Navigation

Mail list logo

Footer information