Re: [openssl-users] How can I sstart openssl ocsp in secure mode using TLS/SSL

On Fri, Sep 22, 2017 at 9:32 AM, Richard Moore wrote: > > It's also worth pointing out that CAs are banned from running OCSP servers > over HTTPS anyway and it isn't needed since the responses are already signed > - http is fine. That argument fails when you consider

Re: [openssl-users] How can I sstart openssl ocsp in secure mode using TLS/SSL

On 22/09/2017 18:32, Richard Moore wrote: On 22 September 2017 at 15:08, Salz, Rich via openssl-users > wrote: Openssl 0.9.8 is old and obsolete and has security issues; you should upgrade. But even if you upgrade,

[openssl-users] Manually shutdown the library

The original issue was discussed here: https://www.mail-archive.com/openssl-users@openssl.org/msg80781.html To summarize: We have a DLL that statically links OpenSSL. Our DLL gets loaded and unloaded multiple times by a process (not our process), and we need to release OpenSSL each time.