> How do we escape from this deadlock?
Well, at least there is the option of taking things into own's own hands
and coding it up. Granted, that's not always feasible, esp for digging
into the depths of openssl code. :( On the other hand, at least two core
developers are looking for financial sup
Class -- compare and contrast --
Rich Salz writes:
> > Well, make that hard choice: do you want to have your software fail
> > when an up-to-date CRL is not available, or do you want to make your
> > software susceptible to a denial-of-service attack on the CRL distro
> > process?
>
> Exactly. S
Hi
I've got a question regarding crl formats.
Until now, I found two mime types for use with crl's:
"application/pkix-crl", which seems to be either a DER or PEM formatted
crl as in openssl crl.
"application/x-pkcs7-crl", which, I would guess at least by it
