10 May
2004
10 May
'04
5:11 a.m.
On 10.5.2004, at 03:09, Timo Sirainen wrote:
I've been thinking about doing this lately as well. Shouldn't really be much of a job. Just tell OpenSSL library to require a valid client certificate. Optionally also force the cert's common name to be client's login name.
Current CVS version has ssl_verify_client_cert option. It doesn't do anything else - if client doesn't send valid certificate the SSL handshake fails.