On Fri, Sep 19, 2014 at 04:11:31PM +0100, Jeremy Harris wrote:
> Mind, I think I see an issue in the openssl implementation;
> does anyone actually use it? I *think* the only advertised
> acceptable CAs are those from a file, not from a dir...
Lots of people use CApath with OpenSSL. You need to run c_rehash,
and be mindful of the fact that the hash symlinks are different
for OpenSSL 0.9.x vs. 1.0.0 and later. Some versions of c_rehash
generate both.
--
Viktor.