To: openssl-users
I will be out of the office starting 12/27/2000 and will not return until
12/28/2000.
I will respond to your message when I return.
__
OpenSSL Project http://www.openssl.org
Have you compiled the appl. using the the OpenSSL lib. ? The error
you are getting are the openssl functions.
I mean while linking the application .. use the openssl library
>From: "dhw" <[EMAIL PROTECTED]>
>Reply-To: [EMAIL PROTECTED]
>To: <[EMAIL PROTECTED]>
>Date: Tue, 26 Dec 2000 21:51:02
Have you compiled the appl. using the the OpenSSL lib. ? The error
you are getting are the openssl functions.
>From: "dhw" <[EMAIL PROTECTED]>
>Reply-To: [EMAIL PROTECTED]
>To: <[EMAIL PROTECTED]>
>Date: Tue, 26 Dec 2000 21:51:02 -0800
>
>
>How can I compile the s_server.c or s_client.c in a
To test if a particular RSA private key matches a particular RSA public key,
you need to compare the modulus (evp_pkey->pkey.rsa->n) and public exponent
(evp_pkey->pkey.rsa.e) components of the keys (these components will match
is the keys are a pair).
I don't know of an OpenSSL function that wil
How can I compile the s_server.c or s_client.c in apps of openssl-0.9.5a
in platform windows 2000 and linux?
in windows 2000,after I compiled the s_server.c in VC++,I build the project
,then errors came forth,such as:
unresolved external symbol _BIO_free
s_server.obj : error LNK2001: unresolv
To: openssl-users
I will be out of the office starting 12/27/2000 and will not return until
12/28/2000.
I will respond to your message when I return.
__
OpenSSL Project http://www.openssl.org
hi,
can openssl command verify rsa key pair? that is whether two given
keys(private, public) matches each other...
now, i use a way to encrypt and decrypt using each keys...but it's
inefficient..
anyone knows good method?
thanks...
I think that "avoiding physical-attack to a server machine" is an important topic.
The following is my comment to your question (just a comment, not an answer to your
question).
If using windows2000 on your server machine, EFS will be useful.
But your server machine will be heavy-load with SSL
I am trying to compile OpenSSL version 0.9.6 on a SPARC/Solaris 8 system
(uname -a gives "SunOS khsun 5.8 Generic sun4u sparc SUNW,Ultra-5_10").
Running make is okay, but make test is not. The CFLAG line in Makefile.ssl
is originally the following:
CFLAG= -fPIC -DTHREADS -D_REENTRANT -DDSO_DLFCN
Dear Sir,
I have created a root CA using openssl. And it can
sign server/user certificate(s) normally. Now i want to sign a subordinate root
CA certificate. But i don't know how to do it and what configuration files
need. Can you help me?
Regards,
chgu
Slightly OT, but check out the online docs at www.apache.org, and look
at , and .htaccess.
The trick is to keep those things that are secure only in a separate
directory hierarchy than those that are available on clear http.
On my site, I have a separate branch at the root level for secure only,
Did anybody have any thoughts on this?
-Original Message-
From: Michael Conley [mailto:[EMAIL PROTECTED]]
Sent: Thursday, December 21, 2000 10:16 PM
To: '[EMAIL PROTECTED]'
Subject: Dumb question- Sorry
I am very new to SSL. I have set up my Apache web server on Red Hat Linux
7. I hav
>os360.caveosystems.com does not exist according to the zone transfer I
>do from ns1[67].verio-web.com...
No, it's private DNS. And its os390. And it does exist. The bug is
almost definitely what Steve pointed out -- wrong OID for the sign mech.
/r$
Hello,
Where can I find docs on how to install openssl with
perl and windows NT?.
Thanks,
george
__
Do You Yahoo!?
Yahoo! Shopping - Thousands of Stores. Millions of Products.
http://shopping.yahoo.com/
___
From: Rich Salz <[EMAIL PROTECTED]>
rsalz> > make sure you common name ie. www.yahoo.com in the cert is the
rsalz> > resolved dns name you are using to pull up the site. Also make sure
rsalz> > you have a server certificate or intermediate.ca configured.
rsalz>
rsalz> that's why I attached the d
> The reason is that somehow you've managed to get sha1WithRSAEncryption
> as the OID in the RSA encrypted DigestInfo structure instead of SHA1.
Thank you. I knew that you'd know the answer. :)
We are doing things at a low-level and I'm gonna smack that boy when
he comes back. :)
/r$
Rich Salz wrote:
>
> > make sure you common name ie. www.yahoo.com in the cert is the
> > resolved dns name you are using to pull up the site. Also make sure
> > you have a server certificate or intermediate.ca configured.
>
> that's why I attached the data, so folks could see that I did that.
>
> make sure you common name ie. www.yahoo.com in the cert is the
> resolved dns name you are using to pull up the site. Also make sure
> you have a server certificate or intermediate.ca configured.
that's why I attached the data, so folks could see that I did that.
I don't have basic constraints
Title: RE: Can't (programmatically) generate browser-compatible SSL certs
make sure you common name ie. www.yahoo.com in the cert is the resolved dns name you are using to pull up the site. Also make sure you have a server certificate or intermediate.ca configured.
-Original Message-
Shashank <[EMAIL PROTECTED]> writes:
> I am looking for securing my web pages..
>
> denying the option of righ click, or denying the save as, see source are
> among those..but still canbe easily decoded..
(1) This isn't an SSL issue.
(2) It's basically hopeless unless you completely displace the
Hi !
I am looking for securing my web pages..
denying the option of righ click, or denying the save as, see source are
among those..but still canbe easily decoded..
Am looking for something like run time encrypting and decrypting,
denying anyone to copy or carry the content
allowing pas
On Tue, Dec 26, 2000 at 11:15:36AM -0500, Rich Salz wrote:
> [Tue Dec 26 11:11:35 2000] [error] mod_ssl: SSL handshake failed
> (server os390.caveosystems.com:8443, client 10.139.16.1) (OpenSSL
> library error follows)
> [Tue Dec 26 11:11:35 2000] [error] OpenSSL: error:140
On Tue, Dec 26, 2000 at 06:13:58PM +0800, [EMAIL PROTECTED] wrote:
>
> I've learned some materials of certificate extensions,
> and have found that certificates of different CA
> have different certificate extensions, such as:
>
> certs from:
> Microsoft : Enhanced Key Usage, Authority Key Ident
I am generating my own keys and certs for Apache/mod_ssl. I can connect
via s_client fine. Using Netscape on Linux pops up a dialog that says
"The security library has encountered an improperly-formatted DER
message." and the Apache error_log says:
[Tue Dec 26 11:11:35 2000] [error] mod_
hi, dear all,
I've learned some materials of certificate extensions,
and have found that certificates of different CA
have different certificate extensions, such as:
certs from:
Microsoft : Enhanced Key Usage, Authority Key Identifier;
Verisign : Key Usage, Certificate Policies, Basic Constraint
25 matches
Mail list logo
