> FC6's pam_pkcs11 is NSS-based, not OpenSSL-based, which is why there's a > difference. RedHat wants to use NSS as a system-wide crypto service, a > la Microsoft CAPI. Is there anywhere that might explain what this means? I'm just a dumb astronomer trying to keep upper level management from taking away the machines I use to get work done. :)