What Anatoly is asking is the following:
You might want to set up a server that does
not know in advance if the client that it is
accepting will use SSL or not.
For some reasons there maybe client programs
that speak the application protocol without
using SSL that cannot be modified.
These clients could be _weakly_ authenticated
for example by getting their IP address with
getpeername() and looking up if nonSSL clients
are allowed from this particular address.
Anatoly and I would very much appreciate some
hints how to do that with the current OpenSSL
API.
Regards
Georg Bisseling
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
