Tom Wu wrote:
When I specify the SSL_VERIFY_FAIL_IF_NO_PEER_CERT flag to
SSL_CTX_set_verify, it has the intended effect if I set it on the server
side; a client not presenting a cert is rejected. Setting this on the
client side does not appear to have the same effect; a server that does
When I specify the SSL_VERIFY_FAIL_IF_NO_PEER_CERT flag to
SSL_CTX_set_verify, it has the intended effect if I set it on the server
side; a client not presenting a cert is rejected. Setting this on the
client side does not appear to have the same effect; a server that does
not present a cert