> Besides certificate verification and session reconnect I don't
> know any details what you have to retest.
>


You imply that the mechanism of X509-based certificate verification
has been embedded in openssh mainstream, right?
__________________________________________________ ____________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majordomo@openssl.org