[19846] in bugtraq
Re: CRLs (was Re: Verisign certificates problem
daemon@ATHENA.MIT.EDU (Patrick Patterson)
Mon Mar 26 13:13:55 2001
Content-Type: text/plain; charset="iso-8859-1"
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Message-ID: <01032607563601.00682@cerberus>
Date: Mon, 26 Mar 2001 07:56:36 -0500
Reply-To: ppatterson@carillonis.com
From: Patrick Patterson <ppatterson@carillonis.com>
X-To: j eric townsend <jet@TIVO.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <p0501040eb6e175cd717c@[192.168.21.67]>
-----BEGIN PGP SIGNED MESSAGE-----
That I know of, Entrust.net, SITA, and EQUANT all have functioning CRLs (They
use CDP's for slightly more efficient handling of large CRLs)
On Friday 23 March 2001 16:52, j eric townsend wrote:
> someone wrote:
> >The first question I have after seeing that is how many of the rest of the
> >500,000 certificates that Verisign says they have issued also do not have
> >this CRL Distribution Point field properly filled in.
>
> For that matter, how many certificates out there are attached to any
> sort of CRL mechanism in the first place? Is there any signing
> authority with a functioning CRL service up and running right now?
>
> --
> jet@tivo.com
> The little voices in my head tell me it would be a bad idea to speak for
> TiVo.
- --
Patrick Patterson Tel: +1 514 485-0789
President, Chief Security Architect Fax: +1 514 485-4737
Carillon Information Security Inc. E-Mail: ppatterson@carillonis.com
- ----------------- The New Sound of Network Security -----------------
<< http://www.carillonis.com >>
