Ok I have a very important kssl patch for v2.0.  it's quite simple but it
makes certificate verification work without using a hashed directory.  This
means that users won't have to run c_rehash themselves.  Also, I have a
250kb+ .crt file. it's basically the entire list of CA root files from
Netscape (borrowed from apache mod_ssl who had already done the work - I
guess we should ask for permission though).  Now the patch w/ .crt file is
certainly too large to post here so if anyone wants to test it, please send
me a note.  

-- 

George Staikos      (waiting for approval for three patches now)