SSL:
> My experience :
> to let iis allow ie show your testCA during connection, you should do
> something in iis :
> - get your CA cert ready in pem format
> - in your NT, double click the above cert file to let certmgr appears
> - install certificate
> - Place the cert into by yourself at :
> -
We forgot to attach the httpsd.conf with our previous message. Here we go
again:
Dear Fellow Netizens and OpenSSL Users,
We have been trying to migrate from mod_ssl to openSSL for our latest Apache
installation, and are encountering a number of problems which we'd be grateful
for helpful comme
Dear Fellow Netizens and OpenSSL Users,
We have been trying to migrate from mod_ssl to openSSL for our latest Apache
installation, and are encountering a number of problems which we'd be grateful
for helpful comments from established users:
1) When we run "[...]/apache/src/make certificate" the
Hi
I have tried to build individual applications with the "old
SSLeay" instructions
# It is worth noting that all the applications are built into
the one# program, ssleay, which is then has links from the other
programs# names to it.# The applicatons can be built by themselves, just
don't
One more point :
"Key manager" accepts DER format when importing the openssl-signed cert.
On Fri, 11 Jun 1999, Raul Gutierrez wrote:
> Plasma:
>
> > Raul, and those who's interested ,
> >
> > If you want to import certificate in IIS, here is the instructions I used,
> >
> > 1. Generate certific
My experience :
to let iis allow ie show your testCA during connection, you should do
something in iis :
- get your CA cert ready in pem format
- in your NT, double click the above cert file to let certmgr appears
- install certificate
- Place the cert into by yourself at :
- Show physical stores
An Rfc822Name is just an Internet e-mail address and is
formally defined in the Rfc 822. In simple terms, it has the
form name@domain.
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Wade L. Scholine
> Sent: Friday, June 11, 1999 3:59 PM
> To: '[EM
Wade L. Scholine wrote:
>
> What's the format of an rfc822Name? Is it name@fqdn, or something else?
> The X.509 doc doesn't seem to say.
This may be too obvious, but how about looking at RFC 822?
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html
"My grandfather once told me that there are t
What's the format of an rfc822Name? Is it name@fqdn, or something else?
The X.509 doc doesn't seem to say.
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, June 10, 1999 11:52 AM
> To: [EMAIL PROTECTED]
> Subject: RE: How to add a new x509 extens
Plasma:
> Raul, and those who's interested ,
>
> If you want to import certificate in IIS, here is the instructions I used,
>
> 1. Generate certificate request using Certificate Manager with IIS,
> 2. Sign the certificate request using openssl, or CA.pl -sign,
> 3. Do a little translation (all in
Jan Tomasek wrote:
>
> Hello,
> I'm new to this list, my names is Jan Tomasek I study on Czech Technical
> university in Prague. I'm working on interface to OpenSSL libraries for
> Delphi.
>
> I try to compile new version 0.9.3a, but nt.mak and ntdll.mak are
> missing. I try to create them by ./
On Fri, Jun 11, 1999 at 08:54:24AM +0200, Stéphane CORNOU wrote:
> I can't understand why the Makefile in apps/ do a
> rm -f openssl
> So, when i do a 'make install' after the 'make all', i have to rebuilt
> openssl.
> My hp-ux takes 1 hour to build this latter.
> 'Make clean' directive
In article <[EMAIL PROTECTED]> you wrote:
>
> my question is:
> Is openssl 0.9.2b compatible with apache 1.3.3 ?
Don't know what exactly you mean, sorry. OpenSSL is always compatible to
Apache because it has nothing directly to do with Apache ;) What you perhaps
mean is whether you can use Apa
Hello,
I'm new to this list, my names is Jan Tomasek I study on Czech Technical
university in Prague. I'm working on interface to OpenSSL libraries for
Delphi.
I try to compile new version 0.9.3a, but nt.mak and ntdll.mak are
missing. I try to create them by ./util/mk1mf.pl but this program
nee
Raul, and those who's interested ,
If you want to import certificate in IIS, here is the instructions I used,
1. Generate certificate request using Certificate Manager with IIS,
2. Sign the certificate request using openssl, or CA.pl -sign,
3. Do a little translation (all in one line),
openssl
On Fri, Jun 11, 1999 at 12:55:05AM -0700, Little Stone wrote:
> >As noted in the current Configure, gcc 2.8.1 is broken on HPUX. That's
> >the symptom, as I recall. Are you using 2.8.1 or is there another
> >version of gcc that's broken, too?
>
> Yes I use gcc 2.8.1, but It works good when I co
Have a look at apps/s_{server,client} that should give you
a starting point.
Carles Xavier Munyoz Baldó schrieb:
>
> Hello,
>
> I have an SSL client-server application in which the server
> authenticates to the client sending its certificate in the SSL handsake,
> but the client doesn't authent
HAv a look into the archives (what you anyway should have done
before). There was a thread just one or two days ago that
answered your question.
In short: you can't do this! (And you even would not want to encrypt
large buffers with RSA for performance reasons.)
©I©KA Július schrieb:
>
>He
David A. Lee wrote:
>
> For example, IIS Server and IE and Netscape clients never ask me for
> pass phrases when using certificates. Does this mean as I suspect
> that those products are not really secure ? Or have they found another
> method to protect certificates from copying without requirin
lcs Mixmaster Remailer wrote:
>As noted in the current Configure, gcc 2.8.1 is broken on HPUX. That's
>the symptom, as I recall. Are you using 2.8.1 or is there another
>version of gcc that's broken, too?
Yes I use gcc 2.8.1, but It works good when I complie ssleay0.9.0
on the same hpux box.
Hello,
I have an SSL client-server application in which the server
authenticates to the client sending its certificate in the SSL handsake,
but the client doesn't authenticates to the server.
Fo my SSL client-server aplication, I need that both authenticates each
other.
How can I do this ?
How c
Carles Xavier Munyoz Baldó schrieb:
>
> Hello,
>
> Wiht this command I make a CSR (Certificate Signing Request) valid only
> for 365 days:
> openssl req -new -days 365 -key server.key -out server.csr
Havn't you forgot the option -x509?
This forces the req utility to issue a (selfsigned x509) c
22 matches
Mail list logo
