> Does any of this sound like a particularly awful idea?
On the contrary, it sounds like a good idea.
--
Senior Architect, Akamai Technologies
IM: richs...@jabber.at Twitter: RichSalz
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Hey there all,
I'm using SSL as part of puppet, which has its own sort of CA.
Puppet has no idea about OCSP, but on the master, it
leaves most of its configuration to the apache backend. Since apache
won't re-read a CRL unless restarted, OCSP seemed like a good answer to
this.
Puppet's CA
