> Colin McCormack schrieb:
> >
> > Is there any way to revoke a certificate which has not expired using openSSL
> > apps?
> >
> > Could somebody please detail it to me?
> >
Try this revoke script, it takes the serial number
#!/bin/sh
#
#revoke the $1 cert
#
cp -p demoCA/index.txt demoCA/index.txt.rev.old
if [ $? -ne 0 ] ; then
echo "Copy failed"
exit 2
fi
revtime=`date -u +%y%m%d%H%M%SZ`
awk "BEGIN { FS = \"\t\" } \
\$4 ~/^$1\$/ {OFS = \"\t\"; \$1 = \"R\"; \$3 = \"$revtime\" ; print \$0 } \
\$4 !~/^$1\$/ {print \$0 }" demoCA/index.txt.rev.old > demoCA/index.txt
diff demoCA/index.txt.rev.old demoCA/index.txt
> > Thanks,
> > Colin.
> >
> > ______________________________________________________________________
> > OpenSSL Project http://www.openssl.org
> > User Support Mailing List [EMAIL PROTECTED]
> > Automated List Manager [EMAIL PROTECTED]
>
> --
> Holger Reif Tel.: +49 361 74707-0
> SmartRing GmbH Fax.: +49 361 7470720
> Europaplatz 5 [EMAIL PROTECTED]
> D-99091 Erfurt WWW.SmartRing.de
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
--
Douglas E. Engert <[EMAIL PROTECTED]>
Argonne National Laboratory
9700 South Cass Avenue
Argonne, Illinois 60439
(630) 252-5444
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
