Somewhat updated, changes include: I tried to be more agnostic about the

specific SSL library that might be used, and I cut out the closepolicy stuff
that we no longer support