[Users] CRL in OpenSER

Christoph Fürstaller christoph.fuerstaller at kurtkrenn.com
Wed Apr 12 14:26:03 CEST 2006


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

Is there a possibility to check a client certificate against a CRL? Is
this allready implemented or are there planes to do such?

Is it a good idea to use client certs? Or is the effort to realice that
to much? Cause the benefits from authenticating a client only for the
TLS connection isn't that much. And authentication against a DB is done
later on in OpenSER as well. (authentication is done twice)

What do you think?

chris...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFEPPHbR0exH8dhr/YRAncQAJ9IEd6eO4cxgeoIna39VwAKnCoz9QCeNEtr
AjCFWx/cTjDcUBBe+EvBQFs=
=fZHN
-----END PGP SIGNATURE-----




More information about the Users mailing list