I'm trying to build an internal PKI, and have found that the effort I went through to stop people using SSL client certs for SMIME appear to have been in vain...
Outlook Professional appears to ignore the nsCert setting, as when you view the cert details it says that the cert allows basically everything: smime,object signing,file recovery,etc. The signed cert indeed has a X509v3 extensions of "SSL Client" under "Netscape Cert Type:", but IE ignores that? What is the equivalent for IE? Thanks! -- Cheers Jason Haar Information Security Manager, Trimble Navigation Ltd. Phone: +64 3 9635 377 Fax: +64 3 9635 417 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1 ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
