Hi I have basic question for Client-Sever using SSL. Both Client/Server have to use SL_CTX_load_verify_locations to load "Trust Root". But Client will load its own private/public key, does not need to load "server" cert at all . Server will load its own private/public key, does not need to load "client" cert at all. The "peer" cert will exchange at "Handshake" time. IS this true??
Please help. Thank You. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Marek Marcola Sent: Monday, March 12, 2007 13:30 To: openssl-users@openssl.org Subject: Re: Root Certificates dir Hello, > I am working on Client-Server applications using SSL. My Server has 3 > or 4 "Trust Root ' certs I use SSL_CTX_load_verify_locations pointing > to a directory which stores all "Trust Root ' certs . > I created a directory ( T1) and load all "Trust Root" certs into > this T1 directory. My question is : > > 1) Do I have concatenant all "Trusted Root" in to one cert ?? ( cat > root1 root2 root3 > root) ? No, but you should execute c_rehash in that directory. Best regards, -- Marek Marcola <[EMAIL PROTECTED]> ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
