<div dir="ltr">If I remember correctly, verify=3 is for verifying against locally
installed certificates and has nothing to do with mutual SSL
authentication.<br><br>I think having verify=somenumber in both server
and client will basically do mutual authetication i.e server will check
client's certificates and client will check server's.<br><br><div class="gmail_quote">On Fri, Aug 15, 2008 at 8:34 AM, Christopher Hunt <span dir="ltr"><<a href="mailto:huntc@internode.on.net">huntc@internode.on.net</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">Ah ha - "verify = 3" - thanks!<br>
<br>
On 15/08/2008, at 9:12 AM, Brian Hatch wrote:<br>
>><br>
> Mutual authentication uses the verify option on both<br>
> ends, rather than just on one end. Both sides verify,<br>
> and both sides present a certificate.<br>
<div><div></div><div class="Wj3C7c"><br>
_______________________________________________<br>
stunnel-users mailing list<br>
<a href="mailto:stunnel-users@mirt.net">stunnel-users@mirt.net</a><br>
<a href="http://stunnel.mirt.net/mailman/listinfo/stunnel-users" target="_blank">http://stunnel.mirt.net/mailman/listinfo/stunnel-users</a><br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br>Sandeep Kumar<br><a href="http://students.iiit.ac.in/~sandeep_kr">http://students.iiit.ac.in/~sandeep_kr</a><br>
</div>