'Re:Re: Client verification in a SSL server'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       openssl-users
Subject:    Re:Re: Client verification in a SSL server
From:       Marcos Rogerio <ssl-users () uol ! com ! br>
Date:       2000-05-31 17:19:26
[Download RAW message or body]

>(...)
>...If there is interest
>I'll post a modified demos/ssl/cli.cpp and demos/ssl/serv.cpp that
>compiles under both Linux and Windoze and where this feature works.
>
>Robert Sandilands
>
>Lutz Jaenicke wrote:
>> 
>> On Tue, May 30, 2000 at 03:38:12PM -0300, Marcos Rogerio wrote:
>> > I have tried samples, FAQs and this mailing list for a way to make
>> > my server read my client´s certificate, without success.
>> Did you really try all samples? See below.
>> 
>> This should go into the FAQ...
>> The client will only send the certificate if requested by the server.
>> The server must hence be configured with the SSL_VERIFY and corresponding
>> SSL_VERIFY_CLIENT_ONCE (maybe SSL_VERIFY_FAIL_IF_NO_PEER_CERT) using
>> the  SSL_CTX_set_verify(ctx, verify_flags, verify_callback) call.
>> See e.g. the openssl s_server source code for the flags "-verify"
>> and "-Verify".
>> 
>> Best regards,
>>         Lutz
>> --
>> Lutz Jaenicke                             Lutz.Jaenicke@aet.TU-Cottbus.DE
>> BTU Cottbus               http://www.aet.TU-Cottbus.DE/personen/jaenicke/
>> Lehrstuhl Allgemeine Elektrotechnik                  Tel. +49 355 69-4129
>> Universitaetsplatz 3-4, D-03044 Cottbus              Fax. +49 355 69-4153

Hi, Mr. Robert,
 Thank you for advices about other setups in my server implementation.
In fact, I have much interest and I also would appreciate a lot that 
kind of feature in the demos in demos/ssl directory. I will also take
a look in the posted messages you have mentioned.
 Thank you again for your consideration,

 Marcos Oliveira.
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majordomo@openssl.org

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic