On Fri, Sep 22, 2017 at 9:32 AM, Richard Moore wrote:
>
> It's also worth pointing out that CAs are banned from running OCSP servers
> over HTTPS anyway and it isn't needed since the responses are already signed
> - http is fine.
That argument fails when you consider that some people want the
d
On 22/09/2017 18:32, Richard Moore wrote:
On 22 September 2017 at 15:08, Salz, Rich via openssl-users
mailto:openssl-users@openssl.org>> wrote:
Openssl 0.9.8 is old and obsolete and has security issues; you
should upgrade.
But even if you upgrade, the ocsp command will not liste
The original issue was discussed here:
https://www.mail-archive.com/openssl-users@openssl.org/msg80781.html
To summarize: We have a DLL that statically links OpenSSL. Our DLL gets loaded
and unloaded multiple times by a process (not our process), and we need to
release OpenSSL each time. Thi
