On Fri, Jan 27, 2006, jong jong wrote: > Hi, everyone, > > I am new to the OpenSSL and I tried hard to understand > SSL protocol and APIs. > I have one question that bothers me. > > When using openssl as a SSL Client, there is an option > to load a > client private key file. > I don't understand why SSL client needs a private key? >
This is for client authentication. When a server requests client authentication and the client agrees to it the client sends a certicate and signs a challenge using the corresponding private key. If client authentication does not occur the private key is not needed. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
