This is the report of the make report.
Any suggestions on how to procede would be great.
OpenSSL self-test report:
OpenSSL version: 0.9.5
Last change: PKCS7_encrypt() was adding text MIME headers twice beca...
Options: no-asm
OS (uname): dgux hostname R4.20MU03 generic AViiO
Thank you Hazel. I figured out what my problem was. I had already generated
a crl. I was expecting the "verify" functions to fail when a Cert had been
revoked. It doesn't.
I am now writing code, as you suggest, to check a cert against the CRL.
Thanks,
-jon
>-Original Message-
>From: haz
Hazel Wrote
>1. First, use "openssl ca" to generate a CRL.
command i used to revoke
openssl ca -verbose $SSLEAY_CONFIG -revoke ./CA/certs/test.crt
openssl ca -verbose -gencrl $SSLEAY_CONFIG -batch -out \
./CA/crl/test.crl -infiles ./CA/newcerts/test.csr
>2.
On Thu, Apr 06, 2000 at 02:51:04AM +0200, Ivo MACHULDA wrote:
> I tray signing simple text file over openssl tool with thi comand:
>
> /usr/local/ssl/bin/openssl smime -sign -in mail.txt -text -out mail.msg \
> -signer user.pem
Signing requires both the certificate and the pri
Generate a crl, then make the app to check for any
requesting service user's cert against it. You needn't
and cannot control user's certs yourself.
Hazel
--- Jonh Hale <[EMAIL PROTECTED]> wrote:
>
>
> I have setup a mini-CA for a specific app. I
> generated a cert, self-signed it,
> and then us
Be careful - verification needs to be integrated within the rest of the
cryptographic system. If you open up an encrypted connection and *then*
do verification your verification will probably be susceptible to
man-in-the-middle attack (basically, the man-in-the middle can
intercept and modify c
Chelo Malagon CSIC RedIRIS wrote:
>
> Hello folks!
> I don't know if this is the apropiate forum to ask this question, but
> I would apreciate if someone could tell me how to obtain the PQG
> parameter to pass to the KEYGEN tag for generating DSA keys.
> I'm trying to use the dsaparam command of
Dear all,
So far I recieved 2 mails. One of them is a question about our
project,
and the other was recommending me to try s_server.c and s_client.c in apps/
However, I think that these files are about specifing the options from the
command line argument.
May be I didn't clear myself. I
Hello folks!
I don't know if this is the apropiate forum to ask this question, but
I would apreciate if someone could tell me how to obtain the PQG
parameter to pass to the KEYGEN tag for generating DSA keys.
I'm trying to use the dsaparam command of the openssl to generate a
PEM file with the
Hello All,
I am really sorry for bothering you all with the stupid question on
Keygen tag. I just overlooked the KeyType parameter which can take RSA
and DSA as values. I want some clarification like, is it possible to
querey the browser about what algorithms it supports, so that tomorrow
if i
Dear Openssl users,
I have one question.
If there is a owned-conventional-algorithm ,
I want to use this algorithm to communicate with SSL ( using openssl libraly. )
How to append this algorithm to SSL library ?
plz, advise me to how to do.
11 matches
Mail list logo
