Richard Levitte - VMS Whacker [EMAIL PROTECTED] writes:
From: [EMAIL PROTECTED] (Peter Gutmann)
pgut001 Given that (statistically speaking) the client will be a
pgut001 Windoze box with a time which is more or less random, the use
pgut001 of absolute timestamps doesn't add much, it would have
"Florian Oelmaier" [EMAIL PROTECTED] writes:
We do the same, as we directly connect to the CA-database, but we set
thisUpdate to the actual time as this seems to make more sense. It would be
fine to have an option within OpenSSL that says: "Trust only responses with a
thisUpdate not more than x