On 24-Oct-08, at 2:21 PM, Joel Schneider wrote:
I think the 4.0.8 Java code does more extensive verification of the
certificate chain and CRL than some previous releases. You could use
OpenSSL to investigate further, e.g.:
openssl verify -CApath certificates -purpose sslclient usercert.pem
Hmm, I tried this:
[EMAIL PROTECTED] grid-security]# openssl verify -CApath certificates -
purpose sslclient hostcert.pem
hostcert.pem: OK
And I guess that seems okay to me. Is there anything else I can check?
--patrick
