Now we have actual client data – this is probably the initial HTTP request encapsulated in SSL/TLS.

There was one check that wasn’t done – the CRL. This check wasn’t done because it is disabled by default. Going into the “Internet Options” under the Tools menu for IE7, we then click the Advanced tab and look what we find.

56