hey all -
when attempting to install openssl on a client's sparc-solaris machine, i
get the following fatal error:;
cc -o openssl -DMONOLITH -I../include -DTHREADS -D_REENTRANT -xtarget=ultra
-xarch=v8plus -xO5 -xstrconst -xdepend -Xa -DB_ENDIAN -DBN_DIV2W
-DULTRASPARC -DMD5_ASM openssl.o verify
Is it possible to tell Crypt::SSLeay which certificate to use for a
particular request? This feature is available in Net::SSLeay by
set_server_cert_and_key.
Amir.
__
OpenSSL Project http://www.op
From: Peter Clark <[EMAIL PROTECTED]>
pclark> OpenSSL> speed -engine chil
pclark> can't use that engine
pclark> 29176:error:25067066:DSO support routines:DLFCN_LOAD:could not load the
pclark> shared library:dso_dlfcn.c:157:
pclark> 29176:error:25072066:DSO support routines:DSO_load:could not load
>Im writting a client/server application, using C++, the
>server follows a multithread model, and I want to generate
>new certificates for each new client that connects with my
>server.
Your code is building a certificate request when what it needs is a
certificate. Here'
I've compiled and installed the latest Apache / mod_ssl and
openssl-engine-0.9.6-beta2 on a solaris 7/sparc system.
Everything works fine until I try to use the engine part, eg:
OpenSSL> speed -engine chil
can't use that engine
29176:error:25067066:DSO support routines:DLFCN_LOAD:could not load
Have you looked at stunnel?
> An excellent question. My whole goal is to be able to create a module which will
>not only create an SSL session and pipe any other app over it, but also let me
>entitle the user according to the credentials obtained from the client certificate.
>
> s0ulfire
>
Stunnel stall and SSL_want_*, SSL_pending?
I've been away from the stunnel stall problem for a couple of days,
but here is another attempt at fixing the stunnel transfer loop, after
a look at Ben Laurie's recent example code in state_machine.c. I have
attempted to preserve the different structur
An excellent question. My whole goal is to be able to create a module which will not
only create an SSL session and pipe any other app over it, but also let me entitle
the user according to the credentials obtained from the client certificate.
s0ulfire
-Original Message-
From:a
> _client_method, presumably?
Whatever, get the same error when I experiment with an SSL server and
connect to it with IE f.i. (both SSL client connect to a secure server and
SSL server contacted by IE broswser fail on this mac thing).
anyway tnx. for the help,
kind regards,
nick.
_
[EMAIL PROTECTED] wrote:
> No. the client will be asked to present the certificate its
> certificate to the server, who will then verify it against its known
> root certificates
Nearly correct -- the client presents a cert chain and the server
performs chain validation -- presumably stopping whe
> "TassoA" == TassoA <[EMAIL PROTECTED]> writes:
TassoA> Hi, we have written a custom server application using
TassoA> OpenSSL, our application uses a self signed root CA
TassoA> certificate, this is required so we can control who can
TassoA> connect to our server.
Tasso
My experience so far, has been that, if you send a "Connection: Keep-Alive"
in the HTTP headers of the object the browser asked for, and not close the
connection, the browser will ask you for more objects (if there are any
more). It's as simple as that.
This works with both IE/Netscape.
Arun.
--
On Wed, Sep 20, 2000 at 05:45:52PM +0200, Nick De Roeck wrote:
> Anyway, I'll try the test-run as you suggested (SSL_set_cipher_list(ctx
> *,"RC4-SHA) I presume ;-)). also, some tests I did today seem to show that
> the error disapears when using SSLv2_server_method.
..._client_method, presumabl
on 9/20/00 17:08, Bodo Moeller at [EMAIL PROTECTED]
wrote:
> On Wed, Sep 20, 2000 at 04:48:39PM +0800, Michael Lee wrote:
>
> [...]
>> I have encountered exactly the same "bad mac decode" error before, although
>> I am using VC++6 on Windows 98. My HTTPS client application attempts to
>> connec
On Wed, Sep 20, 2000 at 04:48:39PM +0800, Michael Lee wrote:
[...]
> I have encountered exactly the same "bad mac decode" error before, although
> I am using VC++6 on Windows 98. My HTTPS client application attempts to
> connect to its.bocgroup.com (210.177.52.102) using SSLv23_method, but fails
Wojtek,
Thanks for your reply. The configuration worked with "./Configure
solaris-x86-gcc" but "make" failed with looking for 'cryptlib.o'. Doesn't
the crypto come with Soalris installation ? I tried with crypto 3.0beta2,
getting error.(any suggestion ?)
Thanks again.
Sk
-Original Message---
On Wed, Sep 20, 2000 at 10:26:38AM -0400, Sanjeev Jha wrote:
> Hi all,
>
> Just want to know if any of you had tried using OPenSSL on intel Solaris-8.
> When I am trying to run "./config", it comes out with error
> "Operating System : i86-sun-solaris2
> This system (solaris-x86-cc
On Wed, Sep 20, 2000 at 04:23:07PM +0200, Wojtek Piecek wrote:
> > Just want to know if any of you had tried using OPenSSL on intel Solaris-8.
> > When I am trying to run "./config", it comes out with error
> > "Operating System : i86-sun-solaris2
> > This system (solaris-x86-cc) is n
Hi!
I'm deeply sorry that I have to ask (again) something that isn't ment to be
asked on this list but I have no one else to turn to but You guys and gals.
(thank God and The OpenSSL Project Team for this list! I mean really...)
The problem in a nutshell:
I'd need to implement connection keep-al
Hi all,
Just want to know if any of you had tried using OPenSSL on intel Solaris-8.
When I am trying to run "./config", it comes out with error
"Operating System : i86-sun-solaris2
This system (solaris-x86-cc) is not supported ... "
TIA,
Sanjeev
Hi, we have written a custom server application using OpenSSL, our
application uses a self signed root CA certificate, this is required so we
can control who can connect to our server.
The server app we wrotte, requires client authentication. Am I right to say
that the client requires a certifica
Hi.
Pls, redirect it if this is not suppose to be bug list.
uname -a
SunOS iridium 5.6 Generic_105181-20 sun4u sparc SUNW,Ultra-5_10
On this system there are 2 function with same name:
/usr/local/ssl/include/openssl/des.h:150:
void des_encrypt(DES_LONG *data,des_key_schedule ks, int enc);
and
/
On Wed, Sep 20, 2000 at 12:31:04PM +, amanda wrote:
> Why do you think that OpenSSL is easier to use than OpenSSH? If you use
> SSH then the application is already written. You don't need to write a
> single line of C to get it running. OpenSSL on the other hand is mostly a
> toolkit fo
Just tried it on my laptop which runs in dual mode Winnt 4.0 (stoneage
servicepack 3) and Win 98SE Win 98: no problem Win NT : unable to
load random state. Coldboot and then Winnt: unable to load random state.
U.K.
- Original Message -
From: Jeffrey Altman <[EMAIL PROTECTED]>
Why do you think that OpenSSL is easier to use than OpenSSH? If you use
SSH then the application is already written. You don't need to write a
single line of C to get it running. OpenSSL on the other hand is mostly a
toolkit for programmers.
For an example of an SSL application, look at s_
Sorry I am using RH linux 6.1
if their is any more info I can provide please let me know
Hello,
When i run ./config
it runs all nice
then I try to make and i get errors about .h files file not found, so i look
but the files are their... sometimes... sometimes not so I hack all my .h
files to
Hello,
When i run ./config
it runs all nice
then I try to make and i get errors about .h files file not found, so i look
but the files are their... sometimes... sometimes not so I hack all my .h
files to give it the full path to the files (it doesnt by the dir path) it
must have and it still doe
-Original Message-
From: zjf <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
Date: 2000Äê9ÔÂ20ÈÕ 11:32
Subject: how can i change my DER fromat certificate to PEM format
>hello:
>can i use openssl to change my der format certificate and key file to PEM
>formate.my private k
>hello ,all
> I am a new man here.i wanna vertify certifiacte and private key use
>openssl.
>i used openssl 0.9.5a
>
>i have 2 certificates.and my root CA certificate is ca.pem
>i copy all the files to openssl-0.9.5a\apps
>i run opessl like this:
>
>openssl -accept my ip address(172.20.4.38):1
Questo indirizzo e' disabilitato. Per favore deregistratelo dal vostro
indirizzario o lista di discussione. Grazie.
This addres s is disabled. Please remove the address from your address book
or distribution list. Thanks.
SIB - Politecnico di Milano
[EMAIL PROTECTED]
__
Nick De Roeck wrote:
> I am attempting to compile opensll (0.9.5a) by means of MetroWerk's
> Codewarrior (CW) compiler.
>
> [snip]
>
> on the NT both the server and
> the client fail during the handshake:
>
> the client reports (connecting to Thawte's secure webserver):
> 251:error:1408F071:SSL r
Greetings,
Your recent email message to QUALCOMM has not been delivered due to the
attachment it included. QUALCOMM does not allow email with certain types of
attachments due to the possible presence of a computer virus in these files.
Please resend your message without any attachments or compr
- The following text is an automated response to your message -
I will be in London for the RiskMetrics client event until Monday 25th September.
Please contact [EMAIL PROTECTED] for urgent issues.
Thanks,
Alan Adkins
Greetings,
Your recent email message to QUALCOMM has not been delivered due to the
attachment it included. QUALCOMM does not allow email with certain types of
attachments due to the possible presence of a computer virus in these files.
Please resend your message without any attachments or compr
I'm trying to set up stunnel (3.8p4) between to BSDI (BSD/OS)
boxes. One of the boxes ("Local") is behind a firewall and gets
NAT'ed when talking to the world, and the other one ("Remote")
is directly connected to the world.
My goal is to set this up such that one can initiate a tcp
connection t
how do I get it to work on win 98. I have perl and
turbo C++ by Borland. HELP
>hello:
>can i use openssl to change my der format certificate and key file to PEM
>formate.my private key file is phrase passwd.what command should i use?
>who can give me a example?
I'm also pretty new to this stuff, but I had a similar problem and this should do the
trick:
openssl rsa -info
> Please, anybody helps me !
> I put this msg some days ago,
> and Im stopped in the development,
>
> thanks in advance
Hi !
Im writting a client/server application, using C++, the
server follows a multithread model, and I want to generate
new certificates for each new client that c
I have create a client certificate with .crt extension using the command
below:
openssl x509 -req -in client.csr -out client.crt \
-signkey /etc/ssl/private/ca.key -CA ca.crt \
-CAkey /etc/ssl/private/ca.key -CAcreateserial -days 365
Btw, I am running apache+modssl in OpenBSD. On the client side
Continuing the debugging process yields the following:
. the value of 'entropy' is too low because RAND_add() is only
called with a non-zero 'add_entropy' parameter in two places:
- when the GlobalMemoryStatus() data is added
- when the Module Walking data from the ToolHelp32 routines
Just figured out why I stopped being able to produce the problem after
switching to Win2000.
in the openssl-snap-2919\out32dll directory after a successful
execution on Win2000 or Win98 there will be produced a .rnd file
if the .rnd file exist the error is not reported, if the file
is
try this:
"openssl crl2pkcs7 -out pkcs7chain -nocrl -certfile usercert -certfile
ca1cert -certfile ca2cert " and so on for any other certs in the chain.
Pietro
> Does anyone know how to generate a certificate chain in pkcs7 form
using
> OpenSSL?
> thanks,
> Kim
>
> ___
42 matches
Mail list logo
