Re: engines

From: pennywis <[EMAIL PROTECTED]> Subject: engines Date: Mon, 11 Dec 2000 14:28:08 -0800 (PST) Message-ID: <[EMAIL PROTECTED]> pennywis> i've been playing around with writing an engine and it all pennywis> seems fairly straight forward except for one thing: i don't pennywis> understand how opens

X.509 certificate

Hi, Can anyone please help... If I want to write an Apache HTTP server module that will intercept a client's X.509 certificate, do some processing before releasing the certificate to the application server, how do I: 1) hook this module to the Apache server's module table 2) Having hooked the mo

RE: Java version?

> I wish to know whether there are Jave version of SSL (instead of JSSE > from Sun Microsystems). I hope I can learn insight about SSL > by using Java > source codes. Thanks. http://www.rtfm.com/puretls/ PureTLS is a free Java-only implementation of the SSLv3 and TLSv1. Best regards, _

RE: SSL_dup() memory leak?

Sorry about replying to myself, but here is the fix I propose: in SSL_dup (ssl_lib.c), add the lines with //MPZ after them. if (s->session != NULL) { /* This copies session-id, SSL_METHOD, sid_ctx, and 'cert' */ SSL_copy_session_id(ret,s);

SSL_dup() memory leak?

Hi all, I think I've found a memory leak in SSL_dup() and I'd like some confirmation from someone who know the code well. (This is for OpenSSL 0.9.6 on Win2000 btw) SSL_dup calls SSL_new with the original SSL*'s context. SSL_new calls ssl_cert_dup to duplicate the memory pointed to by context->c

Re: secure channel w/o authentication or certs

> Since anonymous (unauthenticated) ciphersuites are vulnerable to a man > in the middle attack they are disabled with the default cipher string. > You need to set a cipher string which has something like "ALL:@STRENGTH" > in it using SSL_CTX_set_cipher_list() on both client and server. Thanx. Th

Java version?

Dear all, I wish to know whether there are Jave version of SSL (instead of JSSE from Sun Microsystems). I hope I can learn insight about SSL by using Java source codes. Thanks. Best regards, Jordan CN CHONG __ OpenSSL Project

openssl on WinCE?

Which OpenSSL device(s) are you targetting? Is it just crypto you want, or SSL too? I've got libcrypto going, to a certain extent, on the Pocket PC, and could supply you with the patches. I've found that each Windows CE device varies in what C runtime support it offers. The Pocket PC has very

engines

i've been playing around with writing an engine and it all seems fairly straight forward except for one thing: i don't understand how openssl decides which engine it should be using. (eg- how does it decide to use my engine or the cswift engine instead of software?) thanks, -J _

Creating PEM encoded certificate request

Hello, I'm trying to generate a test certificate from thawte.com, for a mail server, who's necesite PEM encoded certs. When i paste my csr cert request , i receive from thawte, after selected PEM cert ,the following messages Can not generate output PEM from non-input PEM. Are there some specia

key Exchange...

Title: key Exchange... I have a question... When a key exchange occurs between server/client, can this method be called upon numerous times? Or only at the initial session startup? If you have two nodes communicated with SSL security intact and these nodes create a connection once and pass in

RE: A Book Of Beautiful Courses

This kind of spam is really b.s. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Thursday, December 07, 2000 11:56 PM To: [EMAIL PROTECTED] Subject: A Book Of Beautiful Courses #1Christmas Gift for the Knowledge

A Book Of Beautiful Courses

#1Christmas Gift for the Knowledgeable Golfer "..I honestly believe it's the most beautiful golf book I have seen". Ian Wooldridge, Golf Editor Daily Mail (London) "..a stunning collection of photographs that captures the spirit of "gentlemen's golf" in golf's birthland..."Golf Digest This

How do I unsubscribe.

Please... Now that I'm saying goodbye, I want to say that this list always was very helpful. Thanks to everyone... Rodrigo. -- "Se está arrimando un día de sol. Un día de duendes en añejo se acerca un pajaro feroz, zumbando al goce de tu olor se acerca un tiempo de conejos..." El día feliz que e

Re: Getting a Cert

"Mark H. Wood" wrote: > You don't have to, but you may decide that it's much better than the > alternatives. You could create your own certificate, but you need to > answer two questions first: > > o How will my users acquire copies of my certificate? Huh? The certificate is presented a

Re: what is ISO 9796?

> 'net. Although I appreciate that this standard covers data encryption, I > don't think it's that relevant to this list. Anyone care to differ? I can use OpenSSL with HW engine which support only iso9796 (:-<) Martin __ OpenSS

Re: FW: SSL

Check the archives on the [EMAIL PROTECTED] list - I recently posted a patch for Net::SSL which adds support for SSL proxies. The normal Crypt::SSLeay package doesn't support it. Bryan - Original Message - From: "Clarke, Barbara P, HRSVC" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent

x509

Hi,   Not sure whether this question is in its appropriate place but I have a problem when creating a certificate Payload in ISAKMP. In RFC2408 it mentions 3 types of X.509 certificates, mainly:   X.509 Certificate - Signature                    4 X.509 Certificate - Key Exchange 

RE: what is ISO 9796?

I don't think any of us has ISO 9796 to hand. Do you have a library that would stock it? (They are all stocked on microfiche here in the UK at major libraries). Other than going out and buying it, I don't know how you would be able to compare the two, as I guess you've already seen the descripti

Re: what is ISO 9796?

Sorry, I did't specify kind of this ISO. This is like PKCS#1 sign algorithm (or something with create padding) and on ISO pages are only a buy this document. I would know differences between PKCS#1 and iso9796 coding (signing). Martin > The International Standards Organisation have a description

RE: what is ISO 9796?

The International Standards Organisation have a description of this and all their standards at http://www.iso.ch/ Totally off-topic question though. - John Airey Internet Systems Support Officer, ITCSD, Royal National Institute for the Blind, Bakewell Road, Peterborough PE2 6XU, Tel.: +44 (0) 1

what is ISO 9796?

have anybody description (or short description) of this document? Martin __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Man

FW: FW: SSL

Hello, I'm trying to get a file from HTTPS using Crypt:SSLeay and so far it works for other HTTPS URL but not this particular url however, a person advise me to pass a proxy. How do you pass the proxy? I have the syntax but not sure if I'm suppose to use on the REQUEST part before getting the