A quick note to help others in the future who are trying to use openssl to
generate certificates for use with Windows 2000 L2TP/IPSec:
I just spent several days trying to figure out why Windows 2000 IPSec
refused to use certificates generated by openssl. After trying all sorts of
(what seemed to
Hello
I've installed Apache with openssl and mod_ssl. Now I'm trying to force an
Internet explorer export 40-bit Version to use 128-bit encryption with a
Verisign Global Server Id!
[Fri Sep 8 17:43:45 2000] [error] mod_ssl: SSL handshake failed (server
URL:443, client 10.62.12.39) (Op
Recently I noticed a similar problem: I couldn't import a certificate to Key Manager
(but the request was generated in the Key Manager, not with OpenSSL). The problem
symptom was incorrect password too.
The solution was to open the certificate in Notepad (or other ASCII application) and
dele
I faced a simlar problem even when importing certificates generated from
IIS generated requests. The password asked for was the the password for
the IUSR_hostname account. There's some documentation available on the
web about this.
But I was unable to import openssl generated certificates.
Regar
I am looking at using the client_cert_callback function. The
signature is:
int client_cert_cb(SSL * s, X509 ** x509, EVP_PKEY ** pkey)
The callback is called from ssl3_send_client_certificate(SSL *s) after
the server certificate has been read:
SSL_handshake:UNKWN before/connect initializa
Is there a snapshot of openssl in sight that compiles clean under
win32? (the compile stops in rand_win.c, some problem with a pointer
conversion in Rand_poll something, I forgot, my vision got kinda foggy after
having tried the 20th or so snapshot)
I need the latest version real bad.
Could someb
Julien Guisset wrote:
>
> Hi
> I am trying to use Certificates for a personnal application.
> I have some problems with X509_sign() and X509_verify().
>
> I am trying to sign a client CA with :
>
> X509_sign(certif, SERVER_private_key, EVP_md5()));
>
> and then verify it with
>
> X509_verify(
Friday September 08 2000 10:55, Rob Bell wrote to All:
RB> Straight out of the tutorial on Devshed
RB> http://www.devshed.com/Server_Side/PHP/SoothinglySeamless/
Thx. The tutorial seems excellent!
Decided to try the .rpm route, but ran into a problem finding
mod_php3_mysql. :(
KS
__
Some people have reported success by converting the key to NET format:
openssl rsa -in prkey.pem -outform NET -out key.net
The latest snapshot of OpenSSL also has an -sgckey flag which is needed
on some version of IIS which use a modified algorithm.
Steve.
--
Dr Stephen N. Henson. http://www
Hi
I am trying to use Certificates for a personnal application.
I have some problems with X509_sign() and X509_verify().
I am trying to sign a client CA with :
X509_sign(certif, SERVER_private_key, EVP_md5()));
and then verify it with
X509_verify(certif, SERVER_public_key);
but X509_verify re
Recently I noticed a similar problem: I couldn't import a certificate to Key Manager
(but the request was generated in the Key Manager, not with OpenSSL). The problem
symptom was incorrect password too.
The solution was to open the certificate in Notepad (or other ASCII application) and
delete
From: qun-ying <[EMAIL PROTECTED]>
qyzhu> It seems OpenSSL only support dynamic library on solaris system and dll
qyzhu> under Windows. How do I make a dynamic library for Linux? Is there other
qyzhu> issue to take care other than change the relevent compile options?
If you look at a snapshot, y
From: "Morrow, Patrick S" <[EMAIL PROTECTED]>
patrick.s.morrow> How do I go about getting the preprocessor output?
Most C compilers take the switch -E for that. A very simple line
would then be:
cc -E foo.c > foo.I
.I has been then default extension for preprocessed C files in past
ti
13 matches
Mail list logo
