Here's the upstream patch that disables signature checking on self-signed certs. This is needed when the CVE-2009-2409 patch is used.
http://marc.info/?l=openssl-cvs&m=124508133203041&w=2 Marc. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
