> Still no votes from the hacker community?
>
> Seems like no one uses SSLVerifyDepth... ;-)
>
> Please say "this is a bad change, because..." now or
> I'll change it this way for 2.1b9/2.1.0.
I'm sure i don't understand everything about Client Certs. It's
always been one of those things that I'll be using RSN.
IMHO, 0 == no verification, 1 == must know the issuer, 2 == must
know a "certifier" of the issuer, 3 == must know a "certifier" of a
"certifier" of the issuer.
Don't know if this makes sense.
-Philip
------------------------------------------------------------
Philip Gwyn http://www.artware.qc.ca/
(450) 674-9066 Internet ARTware inc
[EMAIL PROTECTED] Programmeur
______________________________________________________________________
Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
