Hi James, Unfortunately, I don't fully remember. I believe it was based on an observation from the nginx guys around security related to session keys.
Brian On Mon, May 2, 2016 at 6:50 AM, James Peach <[email protected]> wrote: > Hi Brian, > > In TS-3125 you generate a server ID by hashing all the subject names in > the server CA cert file (assuming there is one). You also set the client CA > list using SSL_CTX_set_client_CA_list() … why is that? > > J
