1 Dec
2004
1 Dec
'04
8:07 p.m.
On 2004-11-30, at 15:21, Heiko Nardmann wrote:
- does stunnel read the cert files/directories only once at startup
or every time it has to check a certificate?
Stunnel reads certificates from a *file* at startup. It reads certificates from *directory* only the *first* time they're needed.
Ergo: there's no alternative to CRLs. 8-)
- does stunnel support CRLs? e.g. getting the CRL via LDAP?
Stunnel does support CRLs since version 4.05. CRLs can be provided in a file or in a directory (just like certificates).
Best regards, Mike