still there. thank you.
-----Original Message----- From: Lutz Jaenicke [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 4:14 PM To: '[EMAIL PROTECTED]' Subject: Re: Trusted CA list On Fri, May 03, 2002 at 03:18:06PM -0400, Roberto Rodrigues - McLean wrote: > Is the Trusted CA list (with the respective CAs public keys) available > anywhere ? Internet Explorer has it hard-coded, now and then we see some > patch coming from MS that updates the ROOT CA list. How does Netscape (or > Mozilla) check the CAs signatures ? Do they also have the list ? > > Does Verisign pay Microsoft to put the list in the Browser or MS pays > Verisign for the list ? > > Finally, if one is writing a new browser, how can it be capable of verifying > the authenticity (signature) of the certificates received from servers > without having the respective CAs public keys to check the signature with ? The extracted list usable for OpenSSL should be included in the mod_ssl package (or at least it used to be, didn't check recently). Best regards, Lutz -- Lutz Jaenicke [EMAIL PROTECTED] http://www.aet.TU-Cottbus.DE/personen/jaenicke/ BTU Cottbus, Allgemeine Elektrotechnik Universitaetsplatz 3-4, D-03044 Cottbus ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]