[stunnel-users] Common Name checking

Michal Trojnara Michal.Trojnara at mobi-com.net
Tue Jul 14 15:13:21 CEST 2009


Mark Bolton <mbolton at boltz.co.uk> wrote:
> Is there anyway we can use stunnel to help us guard against this  
> 'stolen cert' situation or if not what else could we do?

Sure.  CRLs are designed exactly for this purpose.
http://en.wikipedia.org/wiki/Certificate_revocation_list

Best regards,
    Mike



More information about the stunnel-users mailing list