Title: Newbie: RANDFILE problem
Thought you might find this interesting. I created a file named
/.rnd and filled it full of random text and the error disappeared when I ran
"openssl s_client -connect myserver:443 -state -debug". I think this is just a Solaris
problem.
-Original Messag
> I've been trying to get version 1.05 of the Net::SSLeay Perl module
> interface to OpenSSL to build with version 0.9.5a of OpenSSL.
> So far I've
> been hitting a lot of problems (I'm actually doing this under NT with
> ActiveState Perl 5.005_03, but most of the problems that I've
> solved so
Test
Thanks Mike,
I was just testing that out on a hunch as it was. Good to know I hunched
right for a change.
Heath.
>Line 898 in openssl 0.9.6a in apps/ca.c change:
>
>if (!BN_add_word(serial,1)) goto err;
>
>to
>
>if (!BN_add_word(serial,2)) goto err;
>
>Mike
--
I've had problems like this before, which were magically solved by
getting the latest versions of the JSSE jar files from the sun
site. Altogether very frustrating.
steve
> "OpenSSL" == OpenSSL User <[EMAIL PROTECTED]> writes:
>> I'm trying to produce certs for use with Apache Project
Line 898 in openssl 0.9.6a in apps/ca.c change:
if (!BN_add_word(serial,1)) goto err;
to
if (!BN_add_word(serial,2)) goto err;
Mike
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, September 26, 2000 11:43 AM
> To: [EMAIL PROTECTED]
> Subje
Hi, I'm using openssl as the basis of a CA using req and ca to generate
request and do signing. I'd like to test load balancing by round robin DNS
with two copies of my CA server and want to increment serials by 2 on each
server so one will do odds and the other evens.
I've had a cursory look at
Hi,
I am trying to do a simple ecryption/decryption of a file, alas i got stuck
at the very first function i used (EVP_BytesToKey()), visual c started
screaming blue murder at me. I basically took the code from the
EVP_EncryptInit.pod file and compiled it in a visual c console app, but it
never
Hello,
I've been away from the list or some time so my apologies if this has been
asked before,
Is it possible to use Openssl to simulate a DES card from a given challenge?
Looking at the Openssl command line I would expect that I could do something
like:
echo "1234" | openssl des3 -a -K ab
> I got it working (Net::SSLeay-1.05/openSSL-0.9.5a)with ease under
> perl5.005_03 on FreeBSD3.2. Considering the problems I have had with
> crypto stuff, compiling it was great, even got it running on AIX 4.3.x
> but had to use openSSL-0.9.3a.
What problems, if any, did you have, and how did yo
Hi!
I wonder how SSL should be working with connection keep-alive? I mean that
when functions:
SSL_CTX_new();
SSL_new(pCtx);
SSL_clear(pSSL);
SSL_set_session(pSSL,NULL);
SSL_set_accept_state(pSSL);
have been called for a connection, then what? Can I keep on reading and
writing now matter how lo
>I'm trying to produce certs for use with Apache Project Tomcat :
>
>openssl req -new -out REQ.pem -keyout KEY.pem
>openssl req -x509 -in REQ.pem -key KEY.pem -out CERT.pem
>openssl req -verify -in REQ.pem
>openssl req -verify -in REQ.pem -key KEY.pem
>openssl req -text -in REQ.pem
Ok,
>But when I
Hi,
openssl.conf is in path ..
shashank
Dr S N Henson wrote:
> Shashank wrote:
> >
> > Hi,
> >
> > I tried to create pkcs#8 certs, but on the very first step when I type
> >
>
> Well you'll have a problem there. There's no such thing as a "pkcs#8
> certificate". PKCS#8 is a private key forma
From: [EMAIL PROTECTED]
Ext-Mikko.Jakonen> /usr/ucb/cc: language optional software package not installed
Ext-Mikko.Jakonen> *** Error code 1
Ext-Mikko.Jakonen> make: Fatal error: Command failed for target `cryptlib.o'
[...]
Ext-Mikko.Jakonen> *** Error code 1
Ext-Mikko.Jakonen> make: Fatal error
Jorgen,
Also see the OpenSSL FAQ, this problem is already addresses. try the method
discussed in FAQ, if you get the problem let me know. I had the same problem
on Sparc and intel solaris. Its working fine now.
-Original Message-
From: David Taylor [mailto:[EMAIL PROTECTED]]
Sent: Tuesday
Hi!
Here is an output of that compile:
making all in crypto...
( echo "#ifndef MK1MF_BUILD"; \
echo " /* auto-generated by crypto/Makefile.ssl for crypto/cversion.c */";
\
echo " #define CFLAGS \"cc -KPIC -DTHREADS -D_REENTRANT -DDSO_DLFCN
-DHAVE_DLFCN_H -DNO_ASM -xtarget=ultra -xarch=v8plus -
Shashank wrote:
>
> Hi,
>
> I tried to create pkcs#8 certs, but on the very first step when I type
>
Well you'll have a problem there. There's no such thing as a "pkcs#8
certificate". PKCS#8 is a private key format.
> D:\certs>bash CA.sh -newca
> CA certificate filename (or enter to create)
>
Marco Donati wrote:
>
> I've solved my problem and I'd like to thank everybody who wrote me.
>
> I modified my low level sequence (the code I posted) to build a pkcs12
> bundle with one bag, keeping "shrouded" private key, so i used
> PKCS12_MAKE_SHKEYBAG/PKCS12_pack_p7data INSTEAD of
> PKCS12_M
I would like to access the OpenSSL API from within PHP code.
Are there any PHP classes already existing for this?
--
Heiko Nardmann (Dipl.-Ing.), [EMAIL PROTECTED], Software Development
secunet Security Networks AG - Sicherheit in Netzwerken
(www.secunet.de),
Weidenauer Str. 223-225, D-57076 Sie
Hello,
While trying to install openssl I type ./config at a Unix prompt and get the following
back
Operating System: sun4u-whatever-solaris2
./config: test: unknown operator CSE
This is on Sun Solaris OS 5.6 on a Sparc Ultra 5, running CDE, I have Perl 5 and Sun
Workshop (3) compiler 4.2.
Hi,
Looks like u're Sun Workshop requires some patches
. if u're not able to compiler other c programs,
then there should be some sure problem with u're
SWC. Else try installing GNU's C Compiler, available
from http://www.sunfreeware.com
Hope this helps u.
-Premson
--- David Taylor <[EMAI
Hi all,
I'm rather new to openssl and I'm trying to generate a certificate with the
following commands:
openssl req -new -config openssl.cnf -out \
intermail_ca_cert_request.pem -keyout intermail_ca_privkey.pem
#
openssl x509 -req -in intermail_ca_cert_request.pem \
-signkey intermail_ca_p
"Arne Borkowski (borko.net)" wrote:
> IMHO you need to create a new certificate, as the validity period
> has been "signed" by your authority also. ANY changes invalidate
> the certificate.
Thank you, I created new certificates now.
I did not mean to find a way to "change" a certificate. I thoug
Hi,
Looks like u're Sun Workshop requires some patches.
Have u tried compiling other programs using SWC. If
u're able to .. then . check out with the
pro's . if not . try installing GNU's C
Compiler available from http://www.sunfreeware.com
Hope this solves u're problem
- Prem
Well, I just figured out the following step tries to use configuration
from
/usr/local/ssl/openssl.cnf
while installing I had problem so had to install manually .
I created three folder in c:\ssl
and copied all appropriate files in resp dir..(bin, include, and lib)..
anyway,
ok now it should us
Hi All,
I am writing a API for LDAP , I would like to make it
enabled for TLS. Please let me know the procedure for
invoking TLS in a LDAP Session and the process thereafter.
Thanks
Prashant
_
Get Your Pri
Hi,
I tried to create pkcs#8 certs, but on the very first step when I type
D:\certs>bash CA.sh -newca
CA certificate filename (or enter to create)
Making CA certificate ...
Using configuration from /usr/local/ssl/openssl.cnf
Unable to load config info
Loading 'screen' into random state - done
27 matches
Mail list logo
