openssl-ocsp.1 - OpenGrok cross reference for /freebsd/secure/usr.bin/openssl/man/openssl-ocsp.1

Lines Matching full:responder
176 to an OCSP responder and behave like a mini OCSP server itself.
249 Specify the responder host and optionally port and path via a URL.
284 that is sent to the responder.
288 Connection timeout to the OCSP responder in seconds.
289 On POSIX systems, when running as an OCSP responder, this option also limits
290 the time that the responder is willing to wait for the client request.
291 This time is measured from the time the responder accepts the connection until
305 when the complete responder certificate chain is not available or trusting a
309 File or URI containing explicitly trusted responder certificates.
351 seconds. In practice the OCSP responder and clients clocks may not be precisely
397 responder mode, otherwise it is in client mode. The request(s) the responder
451 a malformed response is received. When acting as an OCSP responder, continue
458 Run the specified number of OCSP responder child processes, with the parent
462 When running as a responder \fB\-timeout\fR option is recommended to limit the time
476 Initially the OCSP responder certificate is located and the signature on
477 the OCSP request checked using the responder certificate's public key.
479 Then a normal certificate verify is performed on the OCSP responder certificate
489 responder certificate: if there is a match then the OCSP verify succeeds.
491 Otherwise the OCSP responder certificate's CA is checked against the issuing
493 extended key usage is present in the OCSP responder certificate then the
502 What this effectively means if that if the OCSP responder certificate is
506 If the OCSP responder is a "global responder" which can give details about
514 Alternatively the responder certificate itself can be explicitly trusted
519 Normally only the \fB\-CApath\fR, \fB\-CAfile\fR, \fB\-CAstore\fR and (if the responder
523 not really usable as a full OCSP responder. It contains only a very
530 It is possible to run this command in responder mode via a CGI
540 Send a query to an OCSP responder with URL http://ocsp.myhost.com/ save the
555 responder certificate. All requests and responses are printed to a file.