> How do you place a constraint on a certificate to allow it to sign only > certificate lower in X400 naming scheme, or containing a special naming > scheme...
Your best way to get a reasonable understanding of this is to read the IETF PKIX profile. For example, http://www.ietf.org/rfc/rfc3280.txt ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
