If I understand you correctly, yes you must use the private key to decrypt the symmetric key which has been encrypted using RSA and the client's public key. There is no way (theoretically) to decrypt using only the public key.

_______________________________________________

openssl-users mailing list

To unsubscribe:

https://mta.openssl.org/mailman/listinfo/openssl-users