My organization is headed down this road after experiencing performance degradation from checking large CRLs. As we come up with a solution, will post what I find out. Alternatively, if you have any information, would appreciate it, thanks!
Paul
Victor, Dwight P CTR DISA PAC wrote:
Classification: UNCLASSIFIED
Caveats: NONE
Hello List!
Has anyone had any experience/success with using mod_ssl + Apache v2 to
query an OCSP responder regarding the status of an end-user provided
certificate and allow/deny access based on the response? Any tips,
suggestions, discussion would be appreciated.
Best Regards,
Dwight...
---
Dwight Victor, CISSP (Contractor)
Systems Administrator / Webmaster
General Dynamics C4 Systems
EMAIL: dwight.victor.ctr@disa.mil
TEL: (808) 653-3677 ext 229
Classification: UNCLASSIFIED
Caveats: NONE
