[rabbitmq-discuss] CRL support

Mark Steele msteele at beringmedia.com
Fri Aug 5 18:33:22 BST 2011


If anyone does end up writing the code to do this, I'd be interested if you
want to share. As an aside, OCSP checks would also be awesome :-P

Thanks,

Mark Steele
Bering Media Inc.

On Thu, Aug 4, 2011 at 6:54 AM, Rosa, Andrea <andrea.rosa at hp.com> wrote:

> Hi Matthias
>
> Thank you for your reply.
> Regards
> --
> Andrea
>
> > As suggested in response to your question in erlang-questions, you can
> > define your own cert verification function with the verify_fun ssl
> > option and have that perform all the checks you need. The erlang ssl
> > docs (http://www.erlang.org/doc/man/ssl.html) for verify_fun describe
> > how that function should behave.
> >
> > To hook your verification function into rabbit (nb: this is untested)
> > ...
> >
> > 1) write an erlang module containing (and exporting) that function
> >
> > 2) In the rabbit/ssl_options section of the rabbitmq.config, add an
> > entry {verify_fun, {YourModuleName, YourFunctionName}}.
> >
> >
> > Regards,
> >
> > Matthias.
> _______________________________________________
> rabbitmq-discuss mailing list
> rabbitmq-discuss at lists.rabbitmq.com
> https://lists.rabbitmq.com/cgi-bin/mailman/listinfo/rabbitmq-discuss
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rabbitmq.com/pipermail/rabbitmq-discuss/attachments/20110805/d0fe8982/attachment.htm>


More information about the rabbitmq-discuss mailing list