thank you your help
i have the secure server up and running.
i have another question
when i reboot the secure server doesn't restart
i have looked in the /etc/rc.d/init.d/httpd
and is there something i can put in the script to start
both damoens
garry
[EMAIL PROTECTED]
On Mon, 30 Aug 1999, Lel
Nevermind. I found a macro substitution in ssl/ssl.h, replacing
SSLeay_add_ssl_algorithms with SSL_library_init. All is right with the
world (for) now.
Cheers,
Ed
> -Original Message-
> From: Trembicki-Guy, Ed (DBIS-TBS) [SMTP:[EMAIL PROTECTED]]
> Sent: Monday, August 30, 1999 11:01 AM
Guys,
I am trying to figure out what this error message is:
280:error:::lib(0) :func(0) :reason(0):2.0:15368864:
I get it occassionally when a call to SSL_read fails. It does not occur
all of the time just every so often.
thanks in advance
-Jim
begin:vcard
n:Miller;Jim
tel;cell
ssl wrote:
>
> On Mon, 30 Aug 1999, Michael Ströder wrote:
>
> > ssl wrote:
> > >
> > > below the cert info, you'll see the "Check Certificate Status" button,
> > > [..]
> > > By this method, the cert must have "nsRevocationUrl" pointing
> > > to a cgi to check it.
> >
> > This on-line certifica
Too many people are heedlessly sending messages to multiple OpenSSL lists.
These lists are busy enough as it is, I am getting tired of slogging through
the same things on the -users, -dev, and -bugs lists every day. Please give
a little thought to where your message would be most appropriate, and
also there is a company called rainbow that makes PCI card based
accelerators. I chose the nCipher SCSI boxes for my setup for maximum
future flexibility.
Warning, don't faint when you see the cost of these products. `get one for
evaluation and check out the performance yourself.
David Lang
O
> From: "Joel T. Geiger" <[EMAIL PROTECTED]>
>
> JTGeiger> I have the same problem with s_client on Win 95...I am
> JTGeiger> unable to type anything after the client has connected to
> JTGeiger> the server. I have also noticed a similar problem with
> JTGeiger> s_server: I connect to my Win 95
From: "Joel T. Geiger" <[EMAIL PROTECTED]>
JTGeiger> I have the same problem with s_client on Win 95...I am
JTGeiger> unable to type anything after the client has connected to
JTGeiger> the server. I have also noticed a similar problem with
JTGeiger> s_server: I connect to my Win 95 s_server fr
> Most CAs will have some requirements on the lengths of the public keys they
> will sign. Currently the CA has to manually check the key length once a
> certificate request arrives since "openssl ca" gives no indication about
> the key length. I think it would be a good idea if the CA could use t
Sounds to me like you may have the key in there twice. Or, you have 2
different SSL virtual hosts.
- Original Message -
From: Elise Berger <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Monday, August 30, 1999 6:19 AM
Subject: PassPhrase Prompts Twice
> Upon boo
> > [Thu Aug 26 19:21:36 1999] [crit] Required SSLCacheServerPort missing
> > [Thu Aug 26 19:24:26 1999] [crit] Required SSLCacheServerPort missing
> > [Thu Aug 26 20:21:36 1999] [crit] Required SSLCacheServerPort missing
> > [Fri Aug 27 17:12:02 1999] [crit] Required SSLCacheServerPort missing
W
As a recap:
>I've been trying to generate CSRs using openSSL, without much success.
>Working
>from req.c as a guide, I've been able to construct a CSR, sign it, and verify
>it. I then Base-64 encode it and save it in a suitable PKCS#10 format.
>Sounds easy, right? It is, except that whenever I
> Have a look at how apps/ca.c does this. Theres some stuff in the
> function certify_spkac() that handles this at around line 1993, then you
> get to the part that retrieves the public key in line 2053. Once you've
> got the EVP_PKEY structure you can then get the keylength and algorithm
> from
As a recap:
>I've been trying to generate CSRs using openSSL, without much success.
>Working
>from req.c as a guide, I've been able to construct a CSR, sign it, and verify
>it. I then Base-64 encode it and save it in a suitable PKCS#10 format.
>Sounds easy, right? It is, except that whenever I
I am using a product from Promia called SecureBroker. It is a companion to
their CORBA support product, SmalltalkBroker. I realize by developing in
Smalltalk I'm in perhaps the smallest (no pun intended) minority of
developers.
Anyway, their product assumes as a prerequisite, SSLeay. They have
Net::SSLeay seems to satisfy most of the requirements of our current
project. We are having only one problem: we need to connect to a secure
server outside of our corporate firewall. We have successfully used
Net::SSLeay to connect to both secure servers inside our firewall and
used LWP::UserAge
Net::SSLeay seems to satisfy most of the requirements of our current
project. We are having only one problem: we need to connect to a secure
server outside of our corporate firewall. We have successfully used
Net::SSLeay to connect to both secure servers inside our firewall and
used LWP::UserAge
At 07:34 PM 8/27/99 , aplus security and internet services wrote:
>i am having problems starting apache ssl the webserver can't start
>
>and this is the error message in the logs what does this mean
>and what can i do about this.
>
>garry
>[EMAIL PROTECTED]
>
>[Thu Aug 26 19:21:36 1999] [crit] Req
I have the same problem with s_client on Win 95...I am unable to type
anything after the client has connected to the server. I have also noticed
a similar problem with s_server: I connect to my Win 95 s_server from a
Linux version of s_client (since the Windows one does not work). The client
ca
it will be install in /usr/local/ssl
garry giesbrecht
[EMAIL PROTECTED]
-Original Message-From:
OrbitalNet <[EMAIL PROTECTED]>To:
[EMAIL PROTECTED]
<[EMAIL PROTECTED]>Date:
Monday, August 30, 1999 7:17 AMSubject:
Help
I have just downloaded openssl-0.9.4 and it
Upon bootup, the Apache server prompts for the encrypted key passphrase
twice, instead of once. The first prompt, I understand is needed for
decrypting the web server's private key. What is the second prompt for ?
Or perhaps I have a configuration error?
I am using Apache 1.3.6, openssl 0.9.3a,
> > 2) If you were to attempt acceleration where do you get the most bang for
> > your proverbial buck; just doing the encryption/decryption or doing the
> > entire SSL on a card ?
>
> The encryption is where you'd get the "bang for the buck."
??? One wants to accelerate a server, right? And what
From: Ben Wooller <[EMAIL PROTECTED]>
wooller> When I use the openssl.exe program to connect to an ssl
wooller> server by using s_client, it appears to do the handshake, but
wooller> then freezes. I can't do a GET or anything.
wooller> I've done a standard compile on linux and windows 95 - on
woo
Ah yes, getting confused.
rather, the cgi should check the crl whether that serial is revoked.
On Mon, 30 Aug 1999, Michael Ströder wrote:
> ssl wrote:
> >
> > below the cert info, you'll see the "Check Certificate Status" button,
> > [..]
> > By this method, the cert must have "nsRevocationUrl
24 matches
Mail list logo
