Mukund <mukund@tessna.com> writes:
> On Thu, Jun 19, 2003 at 11:15:11AM +0100, Mukund wrote:
> | I can't help thinking -- this kind of module/code was available
> | someplace, as a part of the mod_ssl distribution or openssl as some code
> | from Thawte or some other CA. They obviously had code which would only work
> | with their CA signed certificates, but source code was provided with
> | mod_ssl or openssl and the CA sign checking could be patched out or
> | modified to check against a local CA cert.
>
> It's a part of the mod_ssl distribution in pkg.contrib/sxnet.tar
That does something completely different, though. In a Thawte
certificate, there is apparently some X.509 extension (1.3.101.1.4.1),
which contains some kind of user identification. They don't support
setting the user to the subject DN, or part of it.
Regards,
Martin
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Thu Jun 19 22:20:30 2003