In message <[EMAIL PROTECTED]> on Wed, 4 Dec 2002 21:08:43 -0500 (EST), Rich Salz <[EMAIL PROTECTED]> said:
rsalz> > I've changed the behavior so that it will FIRST try to get the file rsalz> > pointed at with the environment variable. If the environment variable rsalz> > wasn't set or loading the file failed, then the system default file will rsalz> > be loaded. If that fails, an error is generated. rsalz> rsalz> I don't think silently using something other than specified is a good rsalz> idea. Hmm? Please note that this is only for the case where the application author has explicitely asked for a default certificate, through something like 'X509_LOOKUP_load_file(lookup,NULL,X509_FILETYPE_DEFAULT)'. Note the last argument. -- Richard Levitte \ Spannvägen 38, II \ [EMAIL PROTECTED] Redakteur@Stacken \ S-168 35 BROMMA \ T: +46-8-26 52 47 \ SWEDEN \ or +46-708-26 53 44 Procurator Odiosus Ex Infernis -- [EMAIL PROTECTED] Member of the OpenSSL development team: http://www.openssl.org/ Unsolicited commercial email is subject to an archival fee of $400. See <http://www.stacken.kth.se/~levitte/mail/> for more info. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]