Andrew Cooke wrote:
> Do you see what I mean? Your decision to ask the user for a password
> makes sense when the utilities are used alone, but when they are used as
> part of a larger script it adds an extra request for a password that is
> a nuisance. That is what I meant about using the scripts as a library.
But if you allow anyone to mark a certificate as revoked how the CA manager
can keep track of theese operations ???
> It is not very important - I thought it was interesting that the apps
> could be thought of either as utilities or libraries, taht's all.
I can see your point, now. Anyway I don't think it could be not very wise
allowing anyone to mark certificates as revoked. Patchin the code does
not require much work, but I don't think it should be done.
This is my opinion, what the other OpenSSL people think about this ???
C'you,
Massimiliano Pala ([EMAIL PROTECTED])
S/MIME Cryptographic Signature
