1 Dec
2004
1 Dec
'04
8:07 p.m.
On 2004-11-30, at 15:21, Heiko Nardmann wrote:
1) does stunnel read the cert files/directories only once at startup or every time it has to check a certificate?
Stunnel reads certificates from a *file* at startup. It reads certificates from *directory* only the *first* time they're needed. Ergo: there's no alternative to CRLs. 8-)
2) does stunnel support CRLs? e.g. getting the CRL via LDAP?
Stunnel does support CRLs since version 4.05. CRLs can be provided in a file or in a directory (just like certificates). Best regards, Mike