OpenCA OCSP Responder
The OpenCA OCSP Responder is an RFC 2560 compliant OCSPD responder. It can be used to verify the status of a certificate using OCSP clients (such as Mozilla/Netscape7). The Responder is actually included in the main OpenCA distribution package. It is also possible to install the daemon as a stand-alone application, in which case you will need a CRL (or access to an LDAP server where the CRL can be obtained).
| Tags | Security Cryptography |
|---|---|
| Licenses | BSD Revised |
| Operating Systems | Unix Mac OS X POSIX BSD Linux Solaris |
| Implementation | C |
Recent releases
- 21 Oct 2006 15:21
Changes: Thread support was added. HTTP header parsing was improved.
- 18 Jul 2006 10:55
Changes: The requirement for the index file option in the configuration file has been removed (it was not used).
- 28 Apr 2005 01:59
Changes: RPM installation fixes, a revised server architecture that was fixed to be used with HSM via OpenSSL's ENGINE interface, and support for downloading CRL/CA certificates via HTTP/LDAP.
- 28 Jan 2005 10:49
Changes: This release fixes a SIGHUP problem when auto_crl_reload was enabled. There is a Solaris include for flock usage instead of semaphores. '--enable-flock' and '--enable-semaphores' have been added to the configure script.
- 18 Jan 2005 11:10
Changes: A bug for nextUpdate and lastUpdate fields setting when reloading CRLs has been fixed. CA certificate loading from LDAP has been added. Support has been added for multiple CA certificates from the same cACertificate entry in LDAP. Solaris putenv issues in configure.c have been fixed. OS architecture specific targets have been added to makefiles.
