On Wed, 4 Dec 2002, Richard Levitte - VMS Whacker via RT wrote:
> In message <[EMAIL PROTECTED]> on Wed, 4 Dec 2002 09:24:39
>+0100 (MET), "[EMAIL PROTECTED] via RT" <[EMAIL PROTECTED]> said:
>
> rt> Could someone verify independently that SSL_CERT_FILE doesn't
> rt> allow reading certificates in non-default locations?
>
> I can verify, by looking at the code, that SSL_CERT_FILE should work,
> but only if the default cert file (/usr/local/ssl/cer.pem?) doesn't
> exist or is faulty. Basically, the system default seems to have
> precedence...
Yes, it _should_ work, but it doesn't. I have tested with no file in
the system default location, and the file pointed to by SSL_CERT_FILE
still doesn't get read. A non-existent file shouldn't take precedence
over an existing file. Even in the case of an existing default file,
what would be the purpose of SSL_CERT_FILE if it can't change the
default?
Doug
__
Doug Kaufman
Internet: [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
