In article <[EMAIL PROTECTED]> you wrote:
> I think i tested the wrong cert. The CA cert has it as true, a signed
> cert i use on my mod_ssl server does not, is this correct?
Yes.
Ralf S. Engelschall
[EMAIL PROTECTED]
In article <[EMAIL PROTECTED]> you wrote:
> Richard Levitte - VMS Whacker wrote:
>>
>> 3moeller> Then direct VMS users to an appropriate snapshot in the
>> 3moeller> announcements, because the latest VMS changes are also not
>> 3moeller> in the tar file.
>>
>> Drat. OK, I'll build my own tarba
Hello, all:
I was trying to package some DH pub key in X509 certificate with openssl
*req* and *x509*. But as far as I can find in the usage information of
*req*, there's only RSA key and DSA key supported. I've tried to read the
source code of *req.c* and found there's a hidden <-newkey dh:> opt
I just subscribed to this list, so forgive me for repeating something
previously said, but did anyone notice that the change in the include
files from the directory include to include/openssl breaks the
apache_1.3.6+ssl_1.34 patch installation? I tried changing the
SSL_INCLUDE from -I$(SSL_BASE)/
Greg Pasquariello wrote:
>
> Hi,
>
> I'm a newbie to OpenSSL and the SSLeay (though not SSL in general). I've
> gotten basic SSL negotiation working, but for the life of me I can't get
> this BIO stuff to work.
>
> I'm running the latest build on NT and the following fails with an Access
> Vio
Hi,
I'm a newbie to OpenSSL and the SSLeay (though not SSL in general). I've
gotten basic SSL negotiation working, but for the life of me I can't get
this BIO stuff to work.
I'm running the latest build on NT and the following fails with an Access
Violation.
BIO *bio = BIO_new_fp(stdou
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Tue, 25 May 1999, geoffrey wrote:
[I'm running SuSE6.0 on intel with an apache 1.3.6 server. I built
[openssl-0.92, and when i do "make certificate", it builds one of only
[40-bit strength. Is there a makefile tweak that I need to enable 128-bit
I want to issue a X509v3 certificate with openssl CA to sign Java
applets.
What extensions must I define in the ssleay.cnf file?
Thank you in advance.
--
Mario
__
OpenSSL Project
"Raul Gutierrez" <[EMAIL PROTECTED]>:
> Can somebody tell me all posible values of nsCertType field in the
> openssl.cnf file and its means?
See doc/openssl.txt in the OpenSSL 0.9.3 distribution.
__
OpenSSL Project
geoffrey <[EMAIL PROTECTED]>:
> I'm running SuSE6.0 on intel with an apache 1.3.6 server. I built
> openssl-0.92, and when i do "make certificate", it builds one of only
> 40-bit strength. [...]
There is no such thing as a "40-bit certificate". What you likely
mean is that when you use Netscape
I'm running SuSE6.0 on intel with an apache 1.3.6 server. I
built openssl-0.92, and when i do "make certificate", it
builds one of only 40-bit strength. Is there a makefile tweak
that I need to enable 128-bit certificate generation? I was
wondering where I m
> Raul Gutierrez wrote:
>
> Can somebody tell me all posible values of nsCertType field in the
> openssl.cnf file and its means?
>
> I know some value for example:
>
> nsCertType = client
> nsCertType = client, email
> nsCertType
Keith Johnston wrote:
>
> Does anyone know of a tool to convert a PKCS8 RSA private key to the PEM
> or DER format
> that OpenSSL uses?
>
Yes I do.
Its in my personal library source and isn't yet in the main tree: yet
another thing on my list of 'things to do'. What kind of PKCS#8:
encrypted
On Tue, May 25, 1999 at 05:03:37PM -0400, Howard Uman wrote:
> I just acquired/started building the latest modssl/openssl to work with
> Apache 1.3.6 and when I do a make certificate, it fails with the following
> error:
>
> test sslv3
> ERROR in SERVER
> 13809:error:1408C095:SSL routines:SSL3_
ben> If people could stick to bugfix-only mode 'til, say, tomorrow, that'll
ben> make life easier (or shall I just branch now and be done with it?).
A branch where corrections are made sounds like the way I'd go...
--
Richard Levitte \ Spannvägen 38, II \ [EMAIL PROTECTED]
Redakteur@Stacken
I just acquired/started building the latest modssl/openssl to work with
Apache 1.3.6 and when I do a make certificate, it fails with the following
error:
test sslv3
ERROR in SERVER
13809:error:1408C095:SSL routines:SSL3_GET_FINISHED:digest check
failed:s3_both.c:147:
13809:error:140940E5:SSL rou
Hello,
Using openssl 0.9.2b's CA.sh, I generated a private key and a certificate
for myself. But I found that I can use the private key to both encrypt and
decrypt the message, which is contrary to my understanding.
Also I want to use openssl to generate a pair of public key/private key
for me.
Does anyone know of a tool to convert a PKCS8 RSA private key to the PEM
or DER format
that OpenSSL uses?
Thanks,
Keith Johnston
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
Can somebody tell me all posible values of
nsCertType field in the openssl.cnf file and its means?
I know some value for example:
nsCertType
= client
nsCertType
= client, email
nsCertType
= objsi
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
I'm running SuSE6.0 on intel with an apache 1.3.6 server. I built
openssl-0.92, and when i do "make certificate", it builds one of only
40-bit strength. Is there a makefile tweak that I need to enable 128-bit
certificate generation? I was wonderin
Hi,
Compilation of the 0.9.3 version fails on BSDi 4.0.1 during the make in
apps/
I saw the assembler underscore problem was down as a release
show-stopper. Have I mucked something up here? :-/
Any help most appreciated,
Daniel.
Dan
Richard Levitte - VMS Whacker wrote:
>
> 3moeller> Then direct VMS users to an appropriate snapshot in the
> 3moeller> announcements, because the latest VMS changes are also not
> 3moeller> in the tar file.
>
> Drat. OK, I'll build my own tarball and will direct the VMS folks to
> it (not that
ben> IIRC the only non-documentation VMS change was GENDSA, right?
And two other command symbols (NSEQ jumps to mind), yes.
--
Richard Levitte \ Spannvägen 38, II \ [EMAIL PROTECTED]
Redakteur@Stacken \ S-161 43 BROMMA \ T: +46-8-26 52 47
\ SWEDEN \ or +46-70
Hello -
> I compiled openssl-0.9.1c / mod_ssl_2.2.8-1.3.6 / apache_1.3.6 on Linux
> 2.0.x box and then tried to test it using IE and Netscape.
> IE read the web-content successfully while Netscape failed and complain
> about something like 'Netscape has encoutered bad data from server'.
I rememb
On Tue, May 25, 1999 at 01:28:51PM +0100, Ben Laurie wrote:
> I have no doubt that there will be a "b" version shortly. The VMS
> changes will be picked up then.
>
> IIRC the only non-documentation VMS change was GENDSA, right?
There was more than that. GENDSA is the one that was not correct i
Oups.
The problems related to the 'DOS' format of the spec file.
Construction in run :-)
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
3moeller> Then direct VMS users to an appropriate snapshot in the
3moeller> announcements, because the latest VMS changes are also not
3moeller> in the tar file.
Drat. OK, I'll build my own tarball and will direct the VMS folks to
it (not that it's terribly important, except for the missing comm
Hi !!!
Just tried but got :
: command not found870:
Bad exit status from /var/tmp/rpm-tmp.12870 (%prep)
Seems to have probs with sed '/#!\usr.'
PS: I tried on RH5.2/6.0 both with openssl 0.9.2 RPM !!!
See you
__
OpenSSL
How can i update from Openssl-0.9.2b to
Openssl-0.9.3?
Slds
Raul Gutierrez
Bodo Moeller wrote:
>
> On Tue, May 25, 1999 at 08:58:35AM +0200, Ralf S. Engelschall wrote:
>
> > It's a little bit inconsitent, but because the source is tagged and the
> > tarball is already rolled and picked up by mirrors we should _NOT_ reroll it,
> > of course. Luckily these are just docum
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi to all of you,
Well... I'm back with more SSL-MZTelnet problems. As you know I'm trying to
use SSLeay and SSL-MZTelnet to create a client authetication method using
certificates in a TELNET environment.
I've been trying some more options and now
Hi,
Sorry if this question has been asked / answered before. I am new to SSL
world, so please be easy on me :-)
I compiled openssl-0.9.1c / mod_ssl_2.2.8-1.3.6 / apache_1.3.6 on Linux
2.0.x box and then tried to test it using IE and Netscape.
IE read the web-content successfully while Netscape fa
32 matches
Mail list logo
