On Wed, 29 Sep 2010 13:41:15 -0700 John Nagle <nagle at animats.com> wrote: > > The really stupid thing about the current SSL module is that it > accepts a file of root certificates as a parameter, but ignores it. That's not true. You have to pass CERT_OPTIONAL or CERT_REQUIRED as a parameter (CERT_NONE is though). Regards Antoine.