It's not REQUIRED that all certs in the chain be there, but it will
probably be useful -- at least the first time. :)
> Would this be a hassle if you have a root CA with a lot of intermediate
> signers? That means that you have to store/locate all possible intermediate
> signers to evaluate a couple of end user certificates.
Yes.
Welcome to the "fun" of path validation.
/r$
--
Zolera Systems, Your Key to Online Integrity
Securing Web services: XML, SOAP, Dig-sig, Encryption
http://www.zolera.com
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
