I found that with OpenSSL version 0.9.7a (the version
included with Redhat 9), the CRL was not being checked.
Thus, certificates that had been revoked were still
verified correctly. This patch sets the appropriate
flags for OpenSSL 0.9.7 and later so that the CRL will
If there are any questions regarding this patch, please
5775 Morehouse Dr.
San Diego, CA 92121
Log in to post a comment.