When I upgrade my applications by using openssl-0.9.5 beta1 to
replace openssl-0.9.4, at running time I found:
"error:02001003:system library:fopen:BN
lib" when function called
at: SSL_CTX_load_verify_locations(ssl, caPath, caFile);
I compile and run both version in the same environment. W
OK, what am I doing wrong.
I've been successful on some systems, but it fails on others, and I
really have no clue as to why.
I run everything the way you show in the docs, but it fails. Now it
seems to be failing more than not, and I don't know what's missing from
my system, i.e. some sort of li
Hello,
Has anybody built openSSL on an SPARC ULTRA-1 and ran an application
that uses openSSL on SPARCstation 20?
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
I am trying to compile OpenSSL on my solaris x86 box and I receive the error
message below.
can anyone help?
make[2]: Entering directory `/usr/agray/openssl-0.9.4/crypto/sha'
gcc -I.. -I../../include -DTHREADS -D_REENTRANT -O3 -fomit-frame-pointer
-m486 -Wall -DL_ENDIAN -DSHA1_ASM -DMD5_ASM -DRMD
Hi,
I'm wondering how a user autenticate itself to a apache web server via
browser. Do he have to carry a floppy disk with his certificate, import to
the browser or will the browser just ask for a password.
If it is possible the second option, how safe will be the connection?
Thanks in advance.
Hi,
I want to generate a server certificate. For that have to sign my
server.csr file with my self signed CA. I used this:
openssl ca -config openssl.cnf -md md5 -keyfile ca.key -cert ca.crt -in
server.csr -out mycert.crt
and i've got this error message:
wrong number of fields on line 1 (lo
Michael Sierchio wrote:
>
> "Grebelsky, Konstantin" wrote:
>
>
> > As far as I understood from different sources this is not possible without
> > RSA since with DH we can not get public keys (limitations of SSLeay)? Thus
> > either I have to pay RSA or I have to create or obtain certificates to
On Thu, 24 Feb 2000, Mike Hoegeman wrote:
> Andy Moskoff wrote:
>
> andy, you rule. send me a copy..
>
> -mike
>
Sure. Its attached. Remember -- its still pretty basic and may
have some bugs (in fact, it probably does). The only thing I ask
is that you send me any cha
Hi,
I want to sign a certificate to my server with a self signed CA. I' ve
done this,
openssl ca -config openssl.cnf -in server.csr -out server.crt
and i've got this error message:
CA ceertificate and CA private key do not match
2946:error:0B080074:x509 certificate routines:X509_check_private_
"Grebelsky, Konstantin" wrote:
> I have the following problem: I have a server and client application. All I
> want to do is to secure (encrypt) the link (TCP/IP) between the
> applications. I want to be able to authenticate both parties upon connection
> using public key. I don't want to use cer
drew wrote:
> does anyone have information about getting ones CA cert installed into
> Microsoft and Netscapes Browsers, ie becoming a fully qualified CA
I think a few hundred thousand dollars (US) would do it.
__
OpenSSL Projec
At 18:45 24.02.00 , Ulf Moeller wrote:
>The first beta release of OpenSSL 0.9.5 is now available from the
>OpenSSL FTP site ftp://ftp.openssl.org/source/>.
>
>The release of OpenSSL 0.9.5 is scheduled for next Monday. To make
>sure that it will work correctly, please test this version (especially
Xavier Gonzalez wrote:
>
>
> I tried again whith the first beta release of OpenSSL 0.9.5, and I had
> the same error.
>
> Here comes the PKCS12 file test. It was created whith Baltimore Toolkit
> "PKI-plus".
I suspected something awful was going on when the error occurred in RSA
decoding code.
In addition to the tools mentioned so far, you might also check out keytool.
keytool is distributed with Sun's jdk 1.2. See
http://java.sun.com/products/jdk/1.2/docs/tooldocs/win32/keytool.html
Greg Stark
securityguides llc
Information Security Consultants
[EMAIL PROTECTED]
www.securityguides.co
sorry, i can not read french. is it french?
Pascal Junod wrote:
> > Non, je n'ai pas repondu a Jocelyne, je crois que je viens d'effacer son Mail !!!
> > Tu peux lui repondre : on commencera vers 20h00 avec les autres et on les attend
>tous les deux
> > vers 20h30, ce nést pas tres genant ?Qu'en
Thanks a lot, but I had done what you suggest me, and the browsers saids
the same, that the certificate is not valid or may be corrupted (only in
windows).:-(
Note: I had installed in the browser the signer´s certificate.
Any help, please?
Thanks in advance.
- Original Message -
From: B
winterlion wrote:
>
> Okay, I'm trying to get a test WWW-server setup.
> And am not ready yet to pick up official cert...
>
> Is it possible to run a test-cert for a short period (and how to limit
> period) that at least netscape 4 will accept (though maybe with a
> warning)?
You could simple u
Thanks a lot to Robert,Mike and Massimiliano for your help.
I got a some suggestion form Hirsch as following:
I believe the problem is that the join can take multiple lines (if the cert is over
multiple lines, and make them into one string), but the C++ code is including the
newlines.
I am n
> Maybe but probably not in OpenSSL. DSA private keys in PKCS#8 (which
> PKCS#12 uses) have a standard format defined in PKCS#11 but this is well
> hidden.
>
> As a result vendors have often made up their own "standard". There are
> currently three different formats which are in use. Maybe yours
>server.csr = Certificate signing request. This contains your server
>key and is used to request your server.crt from a certification
>authority. Guard this with your life also!
Huh? It sure contains your public key, but your private key is not in
there.
Grötjes, Remo
__
>I set up my own CA and sign client certificates.
>I can use the program of perl provided by F.J Hirsch
>in his paper" Introducing SSL and Certificates using
>SSLeay" to download certificate to netscape browser.
>But I can not use my C program to do the work.
[...]
>And this is my C program:
21 matches
Mail list logo
