On Sun, 18 Feb 2001, I wrote:
> > "Would it be better to read the config, read certificates to memory
> > first and than change uid/gid to specified in config."
>
> Exim is flexible. The certificate required can vary, depending on the
> connecting host (and anything else you like - day of the week,
> whatever). So it would need to read all possible certificates that it
> might ever require. I do not think this is sensible.
I forgot to add one important point: the API to the OpenSSL library that
Exim uses expects to be given the name of a file containing
certificates, not the certificate itself. So I don't think this could
in fact be implemented.
--
Philip Hazel University of Cambridge Computing Service,
ph10@??? Cambridge, England. Phone: +44 1223 334714.
