A new mod_revocator package is now available for Red Hat Enterprise Linux 5.
The mod_revocator module retrieves and installs remote Certificate Revocation Lists (CRLs) into an Apache web server without a need for a restart or user intervention. It can be configured to retrieve CRLs from remote servers at periodic intervals or when a CRL expires, and make them available to the Apache Secure Sockets Layer (SSL) module, mod_nss. Additionally, it can be configured to stop the Apache server from accepting requests if a CRL retrieval fails.
This package is required for IPA and Certificate System. (BZ#591244
All users requiring mod_revocator should install this new package, which adds this enhancement.