Hi Gary! > This is wrong...... it should ***ALWAYS*** be left to the user to decide > whether to continue to use any cert, whether expired, or incorrect name, or > whatever reason....
Well, that depends on the protocol. It is not always up to the user to decide if the protocol (SSL, TLS, whatever) has defined that all certs used have to be valid and an expired cert isn't valid. What if a user can use even an revoked certificate? That would break any security policies. -- Regards, Raymund ________________________________________________________ Current beta is 3.85.03 | 'Using TBBETA' information: http://www.silverstones.com/thebat/TBUDLInfo.html IMPORTANT: To register as a Beta tester, use this link first - http://www.ritlabs.com/en/partners/testers/