nanog mailing list archives
Re: CAs with dual stacked CRL/OCSP servers
From: Ben Sjoberg <bensjoberg () gmail com>
Date: Fri, 5 Dec 2014 08:46:13 -0600
Comodo's the only one I know off the top of my head. AAAA records on both the OCSP and CRL domains. On Fri, Dec 5, 2014 at 6:06 AM, Rob Seastrom <rs () seastrom com> wrote:
At $DAYJOB, we have some applications that we would like to be all hipster and *actually check* for certificate revocation. I know this is way out there in terms of trendiness and may offend some folks. Difficulty: the clients are running on single stacked IPv6. We have recently been advised by our existing CA that they "do not currently have IPv6 support plan" (sic). OCSP Stapling sounds like it could be a winner here. Unfortunately, the software support is not quite ready yet on the platform on either end of the connection (client or server). So... we're looking around for a vendor that's taken the time to dual stack its servers. Any leads? -r
Current thread:
- CAs with dual stacked CRL/OCSP servers Rob Seastrom (Dec 05)
- Re: CAs with dual stacked CRL/OCSP servers Ben Sjoberg (Dec 05)
- Re: CAs with dual stacked CRL/OCSP servers staticsafe (Dec 07)