Folks,
My apologies if this has been raised before!
When you follow the instructions to generate a certificate request in
the Red Hat 6.2 Secure Server documentation, there seems to be a
problem. As instructed, you run the following command...
/usr/bin/openssl req -new -key /etc/httpd/conf/serv
Is it generally a bad idea to allow users to use the same SSL session for
say, an hour? (using 128 bit encryption)
I am trying to play with session caches distributed amongst multiple web
servers to allow a user to reuse the same session for up to an hour (by
sharing session info among the web
Folks,
My apologies if this has been raised before!
When you follow the instructions to generate a certificate request in
the Red Hat 6.2 Secure Server documentation, there seems to be a
problem. As instructed, you run the following command...
/usr/bin/openssl req -new -key /etc/httpd/conf/serv
>The signature for SSL_CTX_load_verify_locations is thusly:
>
>int SSL_CTX_load_verify_locations(SSL_CTX *ctx,
>const char *CAfile,
>const char *CApath);
>
>CAfile == the name of the file containing your CA cert.
>CApath == the name of the directory containing your CA setup.
>
>You can p
Hello,
I'm trying to configure SSL on an Apache Webserver on a RedHat
system. When I run make test I get the error message "'idea-ecb'
is a bad command, valid commands are..." Anyone know why this command
is not installing?
Patrick
Reed
There is a particular way I would like to send and receive SSL data. It looks like
it's possible, but I just can't nail down exactly how to do it. I'd like to create a
stream or a socket which looks like any other socket, allows me to read directly from
and write directly to it, but in stead
Hi all,
After playing around with openssl, I wrote some scripts to make creating and
issuing certificate for root, server and users an easy task. Well, just some raw
scripts in command line. (opps... I didn't know there is a ssl_helper.tar.gz
exist. This one I did also include S/MIME generation)
To reply to an earlier message too:-) I will only look at it tomorrow...
Some ideas for doing the verification against a certificate in memory:
[1] You have hard coded a certificate into the program
[2] You are using you own custom database to store the certificates
[3] You have written a nice C
Hello all. I want to get
a RSA public key from .p7b.
Could anybody help me?
please mail to me!
thanks
regards PengFei Yan
>A long time ago I asked the list if it would be possible
>to have the openssl-users list be the official support
>list for Crypt::SSLeay
It's nice of you to ask, since there's really no way to stop you from just
putting that list in your README file. :)
Go for it.
__
Please help me,
how to set descriptive name in openssl.cnf for
CA certificate?
Thank you Ivo
MACHULDA
Hi,
I was wondering if I could create my own E-Mail Certificate. I looked
through OpenSSL docs but the only thing I could find about that topic was a
little function to encrypt and decrypt text messages. I'd like to be able to
use my E-Mail Certificate with Netscape Messenger like the ones t
I tried to send this once, and it appears to have not gone through. Apologies if you
get it twice.
There is a particular way I would like to send and receive SSL data. It looks like
it's possible, but I just can't nail down exactly how to
do it. I'd like to create a stream or a socket which
My understanding of the typical use of OpenSSL is that blocking functions
such as SSL_connect(), SSL_read() and SSL_write() are used, with each
function handling a number of negotiation interactions.
For my non-SSL work I use nonblocking sockets with select() to handle a
number of web interaction
Brian,
You're correct in that the certificate is just a file
- however, it's a file with certain information
encrypted into it that identifies the common name of
the server that will be using it. For example, if Acme
Corporation
applies for and is issued a certificate, they must
supply the server
I have a quick question about client authentication.
How exactly is authenticity gauranteed? If verisign (or whoever) gives one
a digital ID, this is just a file on the computer.
Whats to stop said person from sharing this signature and giving it to all
his friends. The way I understand it
16 matches
Mail list logo
