Hi,
I am currently experimenting with a self signed CA using NSS at the
moment.
I would like to be able to create certificates, sign them with the CA,
and be able to revoke them via some CRL mechanism.
At the moment, I can achieve the first two steps, but the method of
revoking a certificate from an NSS db, and then creating a CRL from that
is eluding me. I have tried to research this quite a bit, and reading of
various man pages are not sheding light upon this situation for me.
Does anyone have any tips or knowledge about what to do to achieve this?
--
Sincerely,
William Brown
pgp.mit.edu
http://pgp.mit.edu:11371/pks/lookup?op=vindex&search=0x3C0AC6DAB2F928A2