[foaf-protocols] Logging out early w/ OCSP

Henry Story henry.story at bblfish.net
Mon Sep 20 21:01:38 CEST 2010


On 20 Sep 2010, at 20:18, Nathan wrote:

> Joe Presbrey wrote:
>> Nathan, SSL_SESSION_ID stays constant with default Apache+browser
>> settings until you restart your browser / reselect client cert /
>> timeout.
> 
> Thanks for clarifying :)

As a matter of interest the TLS spec does allow the server to send
exception codes to send for the browser for refused certificates.
Few browsers work correctly with them though. But the good news is
that Safari on OSX does work correctly, so it is possible to logout
there. I posted a bug for Chromium. 

Henry



More information about the foaf-protocols mailing list