Hi again, another issue I noticed with both the original version and the fork: certificate verification doesn't seem to work. sslscan always reports "self signed certificate in certificate chain". The reason seems to be that the program is never told to load the CA - I think what would be needed is a commandline option to specifiy the CA file (e.g. /etc/pki/tls/certs.pem on CentOS 5) and the actual loading of that file before the certificate check. If I was a better C programmer, I'd do it myself...