https://bz.apache.org/bugzilla/show_bug.cgi?id=65014
Bug ID: 65014
Summary: Documentation for mod_ssl directive SSLOCSPEnable
should mention flag "no_ocsp_for_cert_ok"
Product: Apache httpd-2
Version: 2.4.46
Hardware: PC
OS: Linux
Status: NEW
Severity: normal
Priority: P2
Component: Documentation
Assignee: docs@httpd.apache.org
Reporter: sliebeskind.gtri@gmail.com
Target Milestone: ---
This bug https://bz.apache.org/bugzilla/show_bug.cgi?id=62112
added (as of 2.4.29) the ability to do various flavors of SSLOCSPEnable checks
while allowing certs without any OCSP URLs to be allowed. It allows certs with
no OCSP URLS to be considered valid by adding a flag "no_ocsp_for_cert_ok" to
the SSLOCSPEnable directive.
However, the documentation for SSLOCSPEnable does not mention the flag.
Assuming that since the fix was accepted, that the lack of documentation was an
oversight.
Can information on this flag be added to the mod_ssl documentation?
I believe you would want the documentation to look like the inspiration for
this flag (in the SSLCARevocationCheck Directive.. the flag no_crl_for_cert_ok)
Thx.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: docs-unsubscribe@httpd.apache.org
For additional commands, e-mail: docs-help@httpd.apache.org
Bug ID: 65014
Summary: Documentation for mod_ssl directive SSLOCSPEnable
should mention flag "no_ocsp_for_cert_ok"
Product: Apache httpd-2
Version: 2.4.46
Hardware: PC
OS: Linux
Status: NEW
Severity: normal
Priority: P2
Component: Documentation
Assignee: docs@httpd.apache.org
Reporter: sliebeskind.gtri@gmail.com
Target Milestone: ---
This bug https://bz.apache.org/bugzilla/show_bug.cgi?id=62112
added (as of 2.4.29) the ability to do various flavors of SSLOCSPEnable checks
while allowing certs without any OCSP URLs to be allowed. It allows certs with
no OCSP URLS to be considered valid by adding a flag "no_ocsp_for_cert_ok" to
the SSLOCSPEnable directive.
However, the documentation for SSLOCSPEnable does not mention the flag.
Assuming that since the fix was accepted, that the lack of documentation was an
oversight.
Can information on this flag be added to the mod_ssl documentation?
I believe you would want the documentation to look like the inspiration for
this flag (in the SSLCARevocationCheck Directive.. the flag no_crl_for_cert_ok)
Thx.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: docs-unsubscribe@httpd.apache.org
For additional commands, e-mail: docs-help@httpd.apache.org