Hodie VI Id. Iun. MMVII est, durgaprasad jammula scripsit:
> This question is regarding the extended key usage
> extension implementation which differs from the
> specification [RFC 2459].
> I read RFC 2459 in
> section
> Extended key usage field.

The corresponding paragraph of the RFC3280 (RFC2459 is obsolete, and
superseded by RFC3280) reads:

"If the extension is present, then the certificate MUST only be used
for one of the purposes indicated."

RFC3280 is much more clear and unambigous than RFC2459.

__________________________________________________ ____________________
OpenSSL Project
Development Mailing List
Automated List Manager