> How can this individual verify the x.509? I certainly do not want the
> receiving site to have private key; they are not the creator of such
> documents but simply the receiver for data. An excerpt of code would be most
> beneficial.
The certificate is signed with the PRIVATE key and verified using the PUBLIC
key. There is nothing in a self-signed certificate that changes this.
So they verify it the same as any other certificate.
/r$
--
Principal Security Engineer
Akamai Technology
Cambridge, MA
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
