[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[iaik-ssl] Untrusted Certs



Hi Everyone,

As a part of evaluation, I ran an application program
using IAIK-SSL version against two different secure
web
sites:
	
1) https://machine.domain with the "real" SSL
certificate from Verisign, this test was successful.
	   
2) https://machine.domain with the "test" SSL
certificate from Verisign, this test was also
successful too.

How is this possible ? Isnt the test cert should be a
part of untrusted server cert chain ??? or Does the
IAIK-SSL allow the acceptance of untrusted certs ? 

Any suggestions or thoughts would be greatly be 
appreciated.

Thanks - Amlan.


=====

__________________________________________________
Do You Yahoo!?
Bid and sell for free at http://auctions.yahoo.com
--
Mailinglist-archive at http://jcewww.iaik.tu-graz.ac.at/mailarchive/iaik-ssl/maillist.html

To unsubscribe send an email to listserv@iaik.tu-graz.ac.at with the folowing content: UNSUBSCRIBE iaik-ssl