On 06/20/2003, Dr. Stephen Henson wrote: > On Fri, Jun 20, 2003, Todd A. Oberly wrote:
[...] >> OpenSSL's NSEQ tools are still primitive, and processing it with >> >> ./openssl nseq -in ~/deliver.exe >> >> still generates an error. :-( So I'm off to report a bug and perhaps >> write a little tool of my own. (I'd offer a fix, but I'm not that good >> with C...) > What does the file look like? Does it appear binary or base64 encoded > with headers? > > If you can post or send me a copy I'll have a look at it. It's a binary file containing 3 certificates...my email certificate, an intermediate Thawte CA certificate, and Thawte's FreeMail root certificate. So far, asn1parse is the only openssl command that will touch it. Thanks for the offer! :-) I'm forwarding you a copy privately. > The last time I looked Thawte had several options for downloading > certificates including PKCS#7, raw and nseq, you may have more luck with > another form. Not for their Freemail service, AFAIK. Being free, I suspect they want as few variables as possible, to minimize support requests. The only format option involves choosing a browser type, which they enforce by checking the User-Agent string. Without a bit of local hacking, a "Netscape Certificate Sequence" is my only choice. :-( Cheers, Todd -- Todd Oberly "I'm just passing through here, on my way to [EMAIL PROTECTED] somewhere civilised...and maybe I'll even ICQ: 34926408 arrive" Morrissey, Asian Rut ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
