On Fri, Jan 12, 2001 at 02:19:09PM -0800, Auteria Wally Winzer Jr. wrote:
> Can someone provide an example of the -verify depth option
> for s_client. I'm trying to verify the cert/key and don't know
> what arg for the depth to use. This is what I have so far:
>
> openssl s_client -connect localhost:993 -verify <what to use?>
Use a depth that is longer than the longest chain you are expecting.
In real world I already met chains with a length of 4, so to be safe
choose "9". There is no security or other risk in choosing a high number.
Best,
Lutz
--
Lutz Jaenicke [EMAIL PROTECTED]
BTU Cottbus http://www.aet.TU-Cottbus.DE/personen/jaenicke/
Lehrstuhl Allgemeine Elektrotechnik Tel. +49 355 69-4129
Universitaetsplatz 3-4, D-03044 Cottbus Fax. +49 355 69-4153
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
