On Tue, Mar 07, 2006, Richard Salz wrote: > I'm looking to collect information on what various clients do when sent a > cert request with no DN's. > > One possible reading of the spec is "send any cert you want," as opposed > to anchored in the specified trust chain. > > Does it work that way in "real life"? >
The last time I tried MSIE and Mozilla they presented the user with the choice of all installed client certificates to select from. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
