On Thu, Nov 18, 2004, Richard Levitte - VMS Whacker wrote: > In message <[EMAIL PROTECTED]> on Thu, 18 Nov 2004 20:14:04 +0100, "Dr. > Stephen Henson" <[EMAIL PROTECTED]> said: > > steve> I'll check it through more thoroughly. If you never get that > steve> new error code then I agree there wont be any incompatibility > steve> on that basis. > > ... unless you're hit with proxy certificates, when I'm done with that > project. However, that's an entirely new situation, which doesn't > work at all with OpenSSL as it currently is, so I doubt anyone will > complain when that part would start to work *better* :-). >
I'd agree with that assessment now that I've analysed the patch in more detail so I've no complaints on that score any more. The only case remaining is an application that defines a custom purpose which includes its own broken CA tolerator. I've never heard of such a thing being used so I'd say this is unlikely to affect anything. If anyone knows otherwise please speak up! Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
