Hi, all. I'm hoping somebody can clarify the confusion for me. Do certs need to be guarded or not? Because what happens if you're doing client-side authentication and a server asks you for your cert, caches it and that server is later compromised? What will prevent somebody from stealing my cert and going around pretending to be me?
Thank you. __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
