31 Jul
2006
31 Jul
'06
1:51 p.m.
Hello,
Note that the certificates are all valid and have not expired. The <user cert> is signed by the <CA cert> and we set ssl_ca_file to the CA certificate PEM file.
CRL checking was introduced somewhere after beta8, if you use openssl > 0.9.7 the ssl_ca_file should contain the CAcertificate _and_ the CRL for your CA, both in PEM format. Hope this helps,
--
groeten,
HenkJan Wolthuis