> -----Original Message----- > From: The Doctor [mailto:[EMAIL PROTECTED] > Sent: 15 January 2004 05:18 > To: [EMAIL PROTECTED] > Subject: Re: Using OpenSSL and smartcards with pkcs#11 > > > On Thu, Jan 15, 2004 at 07:03:22AM +0200, Amira Solomovici wrote: > > Hi all, > > > > I have been having difficulty in finding a tutorial > explaining how to use the openssl application with > smartcards, and I hope that someone could help me with the following: > > > > What I am basically trying to do is use a smartcard for > logging into my Linux machine. > > I have openssl ver 0.9.7a installed, and I have implemented > a pkcs#11 interface to the smartcard. > > I also installed the OpenSC libraries, but I'm not sure how > to use it with openssl and with my pkcs#11 module. > > > > I would be grateful if someone could guide me on how to > configure all those tools, and especially how to obtain or > generate a certificate/key-pair to use in the login process > to the computer. > > > > May I recommend that you update to openssl 0.9.7.c as 0.9.7a > has a security advisory. Also, something like > http://www.apache-ssl.org > might be of help. > This depends on what you are running. If you are running Red Hat 9, for example, it says the version is 0.9.7a, and "rpm -q openssl" gives openssl-0.9.7a-20. However, this version does have the security updates. "rpm -q --changelog openssl | more" shows that the security fixes were added on Sep 23 2003.
Before suggesting they upgrade, find out what version of Linux they are running please. Otherwise they may come back with more problems that what they started with. Thank you. - John Airey, BSc (Jt Hons), CNA, RHCE Internet systems support officer, ITCSD, Royal National Institute of the Blind, Bakewell Road, Peterborough PE2 6XU, Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED] Even if you win the rat race, that will still only make you a rat. - DISCLAIMER: NOTICE: The information contained in this email and any attachments is confidential and may be privileged. If you are not the intended recipient you should not use, disclose, distribute or copy any of the content of it or of any attachment; you are requested to notify the sender immediately of your receipt of the email and then to delete it and any attachments from your system. RNIB endeavours to ensure that emails and any attachments generated by its staff are free from viruses or other contaminants. However, it cannot accept any responsibility for any such which are transmitted. We therefore recommend you scan all attachments. Please note that the statements and views expressed in this email and any attachments are those of the author and do not necessarily represent those of RNIB. RNIB Registered Charity Number: 226227 Website: http://www.rnib.org.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
