Rich Salz wrote:
>
> Has anyone added a "-verify XXX" flag to the CRL command?
> The XXX would be the file containing the CA cert.
> Doesn't look to hard, given X509_PUBKEY_get and X509_CRL_verify....
Good idea. It can check the issuer name of the supplied certificate too.
I'll add it when I have the time...
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
