On Tue, Jul 15, 2003 at 07:01:20AM -0700, John B. wrote: > I was having a problem with client certificate > information mismatching the user's dname info. The > certificate used the word "emailAddress" and the dname > file used the word "Email".
This depends on which version of OpenSSL you have installed - newer versions will report "emailAddress" while older ones report "Email". I suspect this change was introduced in OpenSSL 0.9.7, to make object definitions compliant with RFC 2256 (LDAP), although I'm not certain. It definitely happened between 0.9.6h and 0.9.7b, though. > Upon further > investigation I think I found the source of the > problem. Line 426 in nessus-mkcert-client reads: In light of the above, I think it would be better to make the change conditional on the version of OpenSSL in use. George -- [EMAIL PROTECTED]
pgp00000.pgp
Description: PGP signature
