> he said the cert is self-signed. he would have to tell openssl that > this signature is trusted.
Have not had to up to 2.8.5dev8 but will look into. > > the reason for the "sudden" appearing of thes warnings might be the > better cert checking in recent openssl implementations. from 0.9.7 on > they will even check revocation lists (CRLs) :) > My system is netbsd1.5.2/0.9.5a openssl. This only started with 2.8.5dev9. > maybe it's enough to fetch the servers certificate and put it into > local/ssl/certs? > A lovely idea, but it's an IIS .crt file prepared for ie users. I can use openssl asn1parse to extract the pub key from it, and will proceed from there. Stef > clemens > > ; To UNSUBSCRIBE: Send "unsubscribe lynx-dev" to [EMAIL PROTECTED] > ; To UNSUBSCRIBE: Send "unsubscribe lynx-dev" to [EMAIL PROTECTED]
