[Openswan Users] ping works but others applications don't

David Spear dspear at telus.net
Thu Jan 27 11:45:55 CET 2005

I have a quick question about CRL's.  To revoke a certificate I use:

# openssl ca -revoke cert.pem

Does cert.pem have to be in the current directory when openssl is run?
What file is modified to reflect the change?

I ask because I inadvertently revoked the wrong cert using the above
command.  Now, I haven't generated a new crl, but I'll have to
eventually.  Is it possible to "undo" a revocation?  Or to restore a
file from last night's backup which would indicate no revoked



More information about the Users mailing list