-
**Is your feature request related to a problem? Please describe.**
Right now, the PE service only check is a PE is signed but does not validate if the certificate has been revoked.
**Describe the …
-
From the [Let's Encrypt](https://letsencrypt.org/2024/07/23/replacing-ocsp-with-crls/) blog:
Jul 23, 2024 • Josh Aas
Today[sic] we are announcing our intent to end [Online Certificate Status P…
-
### What would you like to be added?
[In 24.2, Redpanda will support Certificate Revocation Lists (CRLs)](https://github.com/redpanda-data/documentation-private/issues/2580) for TLS-encrypted conne…
-
Is it possible to use xCertificateImport on .crl's? If so how do you get the thumbprint of a CRL?
-
*Description*:
Currently CRLs cannot be retrieved from a remote location by Envoys and must be vended to Envoys as secret configuration in the form of [inline bytes or a file location](https://www.en…
-
**Is your feature request related to a problem? Please describe.**
- OCSP exposes users' IP addresses to Certificate Authorities (CAs), creating privacy risks.
- Running OCSP services is complex a…
-
**Is your feature request related to a problem? Please describe.**
TLS uses certificate revocation lists (CRL) to identify and reject revoked certificates. If there is no possibility to specify a CRL…
-
## Feature Request
When using telegraf as a secure reverse proxy for device communication with InfluxDB using mTLS, I would like to be able to revoke individual devices access to the system by spec…
-
### ⚠️ This issue respects the following points: ⚠️
- [X] This is a **bug**, not a question or a configuration issue.
- [X] This issue is **not** already reported on Github _(I've searched it)_.
###…
-
On my RHEL9 servers starting the fetch-crl-boot.service fails with error "Failed to start LSB".
Service fetch-crl-cron is running properly:
systemd[1]: Starting LSB: Run the certificate revocation…