On Thu, 05 Oct 2000, Lutz Jaenicke wrote:
> On Thu, Oct 05, 2000 at 10:16:58AM -0400, George Staikos wrote:
> > I have found that using a .crt bundle instead of a hashed directory works.
> > Perhaps is this code broken in 0.9.6?
>
> What do you mean by "broken"?
> I performed some tests myself, cannot see a problem.
> Did you remember to perform a "c_rehash /name/of/directory/"?
Yes I did...
The problem only seems to be reproducible on Redhat 7.0 so far, but I
haven't had enough people test it yet. Basically, RSA/Verisign signed
certificates all are determined to be expired by the X509 verification code.
Thawte certificates work fine. Also if I print the notBefore and notAfter
dates, they are ok. This is visible on sites like www.verisign.com and
www.microsoft.com. I still don't know if this is related to a bug in the
compiler or not.
--
George Staikos
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
