On Mon, Oct 21, 2013 at 9:00 PM, coderman <coderman at gmail.com> wrote: > ... > there's risk of an active attack; and some browser *cough* disabled > CRL checks "for performance reasons". also relevant: https://github.com/agl/crlset-tools i've found this useful for monitoring CRLs.