Dear List, I am trying to implement client authentication using CRL functionality. My environment is apache 1.3.12, modssl 2.6.6 and openssl 0.9.4. When I use a certificate and CRL produced by a root CA and kept the crl file where the SSLCARevocationFile, it works fine. Whereas when I try to use a certificate and CRL issued by subordiate CA's, 3 level down from the root, apache never bothers to verify the CRL, it simpley allows the transaction go through eventhough the certificate is listed in the CRL file. I am not really sure whether why? Please help me. thanks and regards Shiva _________________________________________________________________________ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
