I hope I'm sending this to the right group. Can someone describe for me (or point me to documentation) how Firefox 1, 2, and 3 handle revocation checking, in terms of CRLs and OCSP? What I'm interested in is: - whether revocation checking is turned on by default - whether CRL checking can be enabled but only for certain CRLs and Cas - whether FF can be told to follow the CDP or AIA extension in the cert - any other wrinkles
I'm running FF2 now and I can see what options are there (for example, there seems to be no option to ask FF to follow whatever CDP pointer is found in the cert) but I don't know if it was enabled by default when I first installed it. Any help would be appreciated. Thanks, -Rick Andrews -- Rick Andrews __o Phone: 650-426-3401 VeriSign, Inc. _ \>,_ Fax: 650-426-5195 487 E. Middlefield Rd. ...(_)/ (_) URL: www.verisign.com Mountain View, CA 94043 email: [EMAIL PROTECTED] _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
