On Sun, Oct 21, 2012 at 2:34 PM, "Martin v. Löwis" <mar...@v.loewis.de> wrote: > Am 21.10.12 19:25, schrieb Tom Browder: > >> I have successfully generated SSL client certificates for my Apache >> web site users, and we have successfully tested them using it to >> access my restricted areas on my web site. >> >> One thing I'm not sure of is why there is a private/public key pair in >> the client certs. > > You must be misinterpreting what you are seeing. The certificate > data structure isn't capable of storing private keys, so if you see > the private key embedded somewhere, it's not a "client cert" it is > embedded in.
Martin, you are correct--I got mixed up over some other thing and thought I saw info on a private key in a client certificate. However, I just checked the cert. again in two browsers (Firefox and Chrome), as well as with openssl, and see no reference to a private key. Sorry for the false alarm. Thanks, Martin. Best regards, -Tom ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
