On 10 Jan, Oleg Amiton wrote:

> however server asks for client certificate at _every_ connection -
> browser displays corresponding dialog.
That is what you wanted when you set "VerifyMode = SSL_VERIFY_PEER". :-)
If you don't want verification at every connect you have to use
SSL_VERIFY_NONE, connect / accept and later you must set
SSL_VERIFY_PEER to the SSL and force a renegotiation. Have a look
at the source of openssl s_server, modssl or
ftp://forelle32.wohnheim.uni-kl.de/pub/apps/echohttpd-1.0.tar.gz 
if you wane know how to do this. 
-- 



tschüß,
         Jochen

Homepage: http://www.unixag-kl.fh-kl.de/~jkunz/

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to