I'm trying to connect to a site that wants the full certificate chain.
Connecting from the command line works perfectly.
Using the code fragment below gives an error when I try to read the first
packet (using receiveData, which just sits in a loop), and the server
indicates that I have a "BAD" cer
Sumit Bandyopadhyay wrote:
>
> Hello,
>
> My company is setting up a B2Bi integration network. As an optional part of
> this, we would like to use x509 certificate based client and server
> authentication.
>
> We found out that the typical server certificates we and our clients buy
> from Veris
Hi,
I don't think LWP supports 'https' protocol. Note that '$req' is a
'HTTP::Request' (not 'HTTPS::Request) object.
You'll need to install 'Net::SSLeay' or 'Crypt::SSLeay' modules.
Cheers,
Rob
- Original Message -
From: "Andy Donaldson" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: F
[EMAIL PROTECTED] wrote:
>
Hey, what is it with you people today? Can't you keep enough sense to
stay out of the professional groups? Go harass the porn fans or
something. I'm having a hard enough time keeping up with the technical
stuff I have to read!
> This message uses a character set th
Hello all,
I have a question I need some guidance on.
I have built this app using OpenSSL for transport and a protocol of my
design to transfer the data it is similar to HTTP. Any way at the moment I
am running it over port 1977. However, in most networks this port is going
to be
Hello from the Teddy Bears Den,
We were just writing to tell you about our free Teddy Bear Screen Saver. You can
download it at:
http://www.teddybearsden.com/screensaver/installden.exe
or just visit our site to learn more about the art of making your own bears.
We hope this email wasn't an i
My apologies for posting that large attachment to the list.
It was meant to be an offlist reply.
( I'm not sure why it wasn't - but I'll try and ensure that I get it right
in future.)
Cheers,
Rob
__
OpenSSL Project
Aslam <[EMAIL PROTECTED]> writes:
> I have a general question about :
>
> If while in ssl/tls handshake, one encounters an error, whether to send
> alert that time only or let the handshake get complete and then send an
> alert to the peer for closing the session..
>
> Consider server authentica
I bet that I make more money in the Web design business than you do.
>From the customers I received last month I made $1560 income.
I also profited on these people $1000 up front.
And you know the funniest part?
I didn't even design their sites!
They did it for themselves!
I bet your sales pitch
Vijo Cherian <[EMAIL PROTECTED]> writes:
> S>C ChangeCipherSpec
> seems to be taking the longest time in the SSL
> transactions. Is there a reason for this?
What do you mean "taking the longest time"?
-Ekr
[Eric Rescorla [EMAIL PROTECTED]]
http
Hi,
I have a general
question about :
If while in ssl/tls
handshake, one encounters an error, whether to send alert that time only or let
the handshake get complete and then send an alert to the peer for closing the
session..
Consider server
authentication fails on client side, then s
S>C ChangeCipherSpec
seems to be taking the longest time in the SSL
transactions. Is there a reason for this?
Pls CC me,
thanks,
vijo.
=
I am a friend of http://www.find-life.com
__
Terrorist Attacks on U.S. - How can you help?
Donate cash,
Screw the latest versions...
I fixed this by downgrading to:
Crypt-SSLeay-0.22
and libwww-perl-5.51
For Solaris 2.7 perl 5.6.1 and for Linux RedHat 6.2 perl 5.005_03
What a complete waste of 2 days.
- George
-Original Message-
From: Joshua Chamas [mailto:[EMAIL PROTECTED]]
Sent: Thur
Hello -
Advice or a reference for compilation instruction are very much appreciated.
I downloaded a patch from the sendmail page: starttls.tar.gz, added it to
teh apps directory of openssl.0.9.6a, applied the patch in it, then
attempted to recompile OpenSSL. However, I receive this error:
gcc -
Sumit Bandyopadhyay wrote:
> How do people solve the issue of mutual certificate based authentication?
Have different certs, with different keypairs, for different purposes.
__
OpenSSL Project htt
On Fri, 14 Sep 2001, Xeno Campanoli wrote:
> The PC Doctor wrote:
> >
>
> This is innappropriate for this group. I resent it, and I am against
> it.
I resent this too. Rather than using an OpenSSL mailing list for drumming
up nationalistic emotions under the guise of compassion, could you p
Hi Folks,
I am trying to install mailman software and it keeps asking libssl.so.0.9.6.
Can someone please tell me where I can find this? I thought openssll will do
the trick but to no avail.
TIA
PS: Please send answer directly to me as I have not subscribed to the group.
--
Nalinda
Ding Yiqiang wrote:
>
> Hi
>
> What's the difference between PEM_read_bio_X509 and PEM_read_bio_X509_AUX?
>
X509 is a the traditional PEM format which is just a base64 DER encoded
structure with header and footer lines. X509_AUX is a "trusted
certificate" format, unique to OpenSSL, which allow
Hello,
My company is setting up a B2Bi integration network. As an optional part of
this, we would like to use x509 certificate based client and server
authentication.
We found out that the typical server certificates we and our clients buy
from Verisign have a specified purpose of 'SSL Server'.
The PC Doctor wrote:
>
This is innappropriate for this group. I resent it, and I am against
it.
--
I support peace and justice for everyone, not just for those on my own
side. What say we get rid of the sides and just do the arithmetic for
peace and justice?
___
Title: RE: Can't -verify "Global Server ID" certs from Verisign
Steve,
Thanks so much, this did the trick. A small thing, but had us stymied.
Appreciate your help,
Dan
-Original Message-
From: Dr S N Henson [mailto:[EMAIL PROTECTED]]
Sent: Thursday, September 13, 2001 11:20 AM
To
Missing file wincrypt.h when compiling version 0.9.6a and 0.9.6b using VC
on file .\crypto\rand\rand_win.c
Any help?
Luiz Filipe
__
OpenSSL Project http://www.openssl.org
User Support Mailing Lis
First I am sorry to use the mailing list for this, but in this case Im
making an exception to my no spam type postings... please forgive me.
Please also foward this info to everyone you know !
Friday Night at 7:00 p.m. step out your door, sto
Hi
What's the difference between PEM_read_bio_X509 and PEM_read_bio_X509_AUX?
Yiqiang
- Original Message -
From: "Dr S N Henson" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, September 13, 2001 9:57 PM
Subject: Re: PEM_read_bio_X509
> Ajay Nerurkar wrote:
> >
> > Can P
Bodo Moeller <[EMAIL PROTECTED]> writes:
> On Fri, Sep 07, 2001 at 11:06:06AM +0300, Andrew Popov wrote:
>
> > We need to set timeout on SSL_accept()
> > Seting with SSL_CTX_set_timeout(SSL_CTX *ctx, long t) has no effect
>
> No, this function is not about connection timeouts (it is about the
>
On Fri, Sep 07, 2001 at 11:06:06AM +0300, Andrew Popov wrote:
> We need to set timeout on SSL_accept()
> Seting with SSL_CTX_set_timeout(SSL_CTX *ctx, long t) has no effect
No, this function is not about connection timeouts (it is about the
session cache).
To impose a timeout on SSL_accept, use
On Wed, Aug 29, 2001 at 03:57:07PM +0200, Peter Sommerlad wrote:
> How do I ensure browsers with both export grade and non-export grade
> ciphers connect using stronger encryption? Or is that done
> automatically today?
Yes, this should always happen automatically. The client presents its
list
Dear all,
I am terribly sorry for keep spamming you with these questions. I am too
fresh and too new to OpenSSL cryptography, and wishing desperately for some
documents (I have looked at the SSLeay Documentation) or some information on
this useful technology.
I really appreciate
I apologize for what I'm sure is a basic
question. I'm trying to automate a testing script
that accesses an https:// site under Windows NT
using ActivePerl. I've have the latest version
of ActiverPerl and to my knowledge the latest
version of openssl (openssl-engine-0.9.6b). I've
successful
Title: ??: How to load a P12 certificate?
Dear
Yong Yue
It is
you again that helps me :D Thousand thanks.
But
could you please direct me to a documentation about this
codes?
So
that I could understand it more :)
Thousand thanks again for your
kindness
Wish
you all the best
Michael Sierchio wrote:
>
> Götz Babin-Ebell wrote:
>
> > Don't underestimate XOR.
> > With a good random source and a secure way to seperate
> > key and data it is one of the best crypt algorithms available.
>
> XOR only permits N-of-N threshold schemes, not K-of-N with
> K < N.
But that is e
>-Original Message-
>From: Eric Rescorla [mailto:[EMAIL PROTECTED]]
>Sent: 14 September 2001 02:22
>To: [EMAIL PROTECTED]
>Subject: Re: Export laws
>
>
>Michael Sierchio <[EMAIL PROTECTED]> writes:
>> The code was simply reverse-engineered. It's a small, simple
>> piece of code. Reverse-
On Fri, Sep 14, 2001 at 11:03:20AM +0200, Averroes wrote:
> Hi all,
>
> Perhaps someone noticed this:
>
> When I create a certificate there is difference
> between system (OS) time and creation time of certificate.
> Approximately one hour.
>
>
> certificate info:
> Validity
> Not
Ooops...
Sorry, Sorry!!!
zhu qun-ying wrote:
>
> Averroes wrote:
>
> > Hi all,
> >
> > Perhaps someone noticed this:
> >
> > When I create a certificate there is difference
> > between system (OS) time and creation time of certificate.
> > Approximately one hour.
> >
> >
> > certificate info:
>-Original Message-
>From: Averroes [mailto:[EMAIL PROTECTED]]
>Sent: 14 September 2001 10:03
>To: [EMAIL PROTECTED]
>Subject: Time Diff?
>
>
>Hi all,
>
>Perhaps someone noticed this:
>
>When I create a certificate there is difference
>between system (OS) time and creation time of certific
On Fri, 14 Sep 2001, Averroes wrote:
> Hi all,
>
> Perhaps someone noticed this:
>
> When I create a certificate there is difference
> between system (OS) time and creation time of certificate.
> Approximately one hour.
>
>
> certificate info:
> Validity
> Not Before: Sep 14 09:57:24
Averroes wrote:
> Hi all,
>
> Perhaps someone noticed this:
>
> When I create a certificate there is difference
> between system (OS) time and creation time of certificate.
> Approximately one hour.
>
>
> certificate info:
> Validity
> Not Before: Sep 14 09:57:24 2001 GMT
>
Hi all,
Perhaps someone noticed this:
When I create a certificate there is difference
between system (OS) time and creation time of certificate.
Approximately one hour.
certificate info:
Validity
Not Before: Sep 14 09:57:24 2001 GMT
Not After : Sep 13 09:57:24 2006 GMT
Hello!
Is it possible to add some new purpose to the
alredy created certificate request by using only command tools of
openssl???
For example Certificate purpose CodeSigning with
OID= 1.3.6.1.5.5.7.3.3
I hope somebody can help
me?
39 matches
Mail list logo
