Welcome! Log In Create A New Profile

Re: SSL client verification context

Forum List Message List New Topic Print View

Matthias-Christian Ott

February 10, 2011 10:38AM

On Thu, Feb 10, 2011 at 06:24:31PM +0300, Igor Sysoev wrote:
> On Feb 10, 2011, at 18:04 , Matthias-Christian Ott wrote:
> >
> > What I mean was the following
> >
> > server {
> > location /a {
> > ssl_client_certificate a/ca.pem;
> > ssl_crl a/a.crl;
> > }
> >
> > location /b {
> > ssl_client_certificate b/ca.pem;
> > ssl_crl a/a.crl;
> > }
> > }
> >
> > As far as I can tell from the documentation, both Apache and lighttpd
> > seems to support this.
>
> It requires SSL re-handshake and nginx currently does not support it.

I'm not familiar with SSL, but from what I read in overviews, the client
presents the client certificate to the server, so the server could check
the certificate against multiple CAs without a re-handshake, right?

Regards,
Matthias-Christian

_______________________________________________
nginx-devel mailing list
nginx-devel@nginx.org
http://nginx.org/mailman/listinfo/nginx-devel

Reply Quote

RSS

Subject	Author	Views	Posted
SSL client verification context	Matthias-Christian Ott	7601	February 10, 2011 02:38AM
Re: SSL client verification context	Igor Sysoev	4461	February 10, 2011 08:22AM
Re: SSL client verification context	Matthias-Christian Ott	2668	February 10, 2011 10:06AM
Re: SSL client verification context	Igor Sysoev	4008	February 10, 2011 10:26AM
Re: SSL client verification context	Matthias-Christian Ott	2578	February 10, 2011 10:38AM
Re: SSL client verification context	Igor Sysoev	2653	February 10, 2011 10:58AM
Re: SSL client verification context	Matthias-Christian Ott	2402	February 10, 2011 11:04AM
Re: SSL client verification context	Igor Sysoev	3929	February 10, 2011 11:10AM

Sorry, you do not have permission to post/reply in this forum.

Online Users

Guests: 323

Record Number of Users: 8 on April 13, 2023

Record Number of Guests: 421 on December 02, 2018