On 17 Apr 2012, at 2:04 PM, Nathan Smyth wrote:
>> If the apps only need to be able to verify certificates issued by that CA,
>> then all they need is a copy of the CA's certificate and to know that that
>> certificate should be used as a trust root. (And, perhaps, access to a CRL
>> or somethi
> If the apps only need to be able to verify certificates issued by that CA,
> then all they need is a copy of the CA's certificate and to know that that
> certificate should beĀ used as a trust root. (And, perhaps, access to a CRL or
> something if you want to be able to revoke certificates befo
On 17 Apr 2012, at 10:48 AM, Nathan Smyth wrote:
> I created a CA on my local machine (using CA.sh), which I used to develop
> some socket-based applications. The apps access the CA using
> SSL_CTX_load_verify_locations, with the (local) path of the CA.
>
> I'm now distributing the applications
