1. I am just checking how to turn off the "sending and email functionality", i.e. I don't want my users to receive an email when there cert is ready or with a CRIN number. The warn user flag in the ca_node.conf seems to do this, but I am a bit confused as I don't have this setting in the old 0.9.0 environment.
1a. warnuser exists but it is not used by any script (grep -ri warnuser *). I don't know who introduced it.
1b. The correct option for automatic mailsending during import is SEND_MAIL_DURING_IMPORT.
2. Is the signing algorithm of the CRL always fixed at md5 or is there somewhere I can change it to sha1 ?
I checked the source code of OpenSSL and it ignores the default md during the CRL generation. It only notices -md. I send a message to openssl-dev. Today we only support MD5 (until OpenSSL is fixed).
Michael -- ------------------------------------------------------------------- Michael Bell Email: [EMAIL PROTECTED] ZE Computer- und Medienservice Tel.: +49 (0)30-2093 2482 (Computing Centre) Fax: +49 (0)30-2093 2704 Humboldt-University of Berlin Unter den Linden 6 10099 Berlin Email (private): [EMAIL PROTECTED] Germany http://www.openca.org
------------------------------------------------------- This SF.Net email sponsored by: Free pre-built ASP.NET sites including Data Reports, E-commerce, Portals, and Forums are available now. Download today and enter to win an XBOX or Visual Studio .NET. http://aspnet.click-url.com/go/psa00100006ave/direct;at.asp_061203_01/01 _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
