On 10/14/05, Dr. Harry Knitter wrote:

> Thanks, however, I=B4d prefer something like the Unique Subject Identifye=

r or
> perhaps the Fingerprints. DNs can be faked easy.


Not if you require your own CA as the issuing authority using
SSLCACertificateFile and SSLRequire, they can't...

--Cliff
__________________________________________________ ____________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org