(And I'll cc the developers list so they can see the problem.)
The archives show there have been a number of queries on "handshake
failure" errors in the past year (including mine a couple of weeks ago),
but I haven't seen but one response. So while I don't (yet) have any
definite answers, perha
[In response to Pascal Janse van Vuuren, 13 Nov 2001]
The "RSA Security's Official Guide to Cryptography" has pretty good
discussion of various kinds of attacks and how they can be dealt with.
See p108 for a discussion on using Diffie-Hellman based key exchange.
(Doesn't mention OpenSSL, though.
Title: RE: INSTALL OPENSSL
Look for a file called 'Install.W32' on your root directory. It contains the Win32 install instructions.
-P
-Original Message-
From: Francisco Castillejo [mailto:[EMAIL PROTECTED]]
Sent: Sunday, November 11, 2001 12:28 PM
To: [EMAIL PROTECTED]
Subject:
On Mon, Nov 12, 2001 at 05:34:15PM -0500, Mark Ng wrote:
> Hello all,
>
> I was wondering if any of you know anything about the
> a
> message posted on the openssl mailing list:
> article: http://linux.dp.ua/maillist/msg00232.html
>
> Sergio mentions in the message that he is distributing
>
Hello all,
I was wondering if any of you know anything about the
a
message posted on the openssl mailing list:
article: http://linux.dp.ua/maillist/msg00232.html
Sergio mentions in the message that he is distributing
his code as open source. I'd like to get a copy or
location for it. I'
"Pascal Janse van Vuuren" <[EMAIL PROTECTED]> writes:
> I'm not a real crypto expert. But, I'm facing a potential (?)
> problem. I've used OpenSSL to negotiate a secure control channel
> between two nodes of a private network. The generated private keys
> are encrypted with a specific password. Na
Probably not, as long as the client can properly respond to a changed server
key. For instance, in SSH2, the ssh client "remembers" the server's key on
the first connection. The client can be configured to abort server
connections when the key changes from a known value, or at the minimum the
clie
Yes, there are. If you look at req.c and genrsa.c, in the apps directory,
you can see what API calls wind up being used when you run "openssl genrsa
..." or "openssl req ..."
Lynn Gazis
-Original Message-
From: Ruby Cruiser [mailto:[EMAIL PROTECTED]]
Sent: Sunday, November 11, 2001 12:1
Hi,
I am new to ssl and am trying to upload files to a
server using https post. I am using an executable that
takes
as inputs from the command prompt.
Unfortunately it was written by someone else. I can
upload files from a machines on one domain but not on
other.
I get the following erro
Title: ÉϹØϵͨ£¬½±ÉÌÎñͨ£¡
ÉϹØϵͨ£¬½±ÉÌÎñͨ
Hi all,
I'm not a real crypto expert. But, I'm facing
a potential (?) problem. I've used OpenSSL to negotiate a secure control channel
between two nodes of a private network. The generated private keys are encrypted
with a specific password. Naturally, any secure system is only as strong as
Alternatively, if you *do* have a Solaris C compiler installed, you need to
check and make sure it comes first in your path. /opt/SUNWspro/bin (or
whatever directory you installed the C compiler in, if you didn't place it
in the default location) should come before /usr/ucb in your path. As long
Hi, and sorry for the previous empty message.
My question, in short: Is there a way to serialize the contents of the
SSL_CTX and SSL structs to a bio?
Some more details: I'm trying to figure out a way to use SSL between the
client and server of my application. The problem is that there are sever
Hi all,
I'm trying
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
Hi all,
I'm new with SSL.
I have one problem with certificate verification routines.
When I include next code in server
--
... ssl initialization ...
SSL_CTX_set_verify(*ctx,
SSL_VERIFY_PEER|SSL_VERIFY_FAIL_IF_NO_PEER_CERT|SSL_VERIFY_CLIENT_ONCE, NULL);
... continue ..
Hi
I have problem.
I want to use SSL over SCTP(stream control transmission protocol).
SCTP is like TCP.
It works over TCP but it doesn't work over SCTP.
I need more documetns and examples.
Where can I found more documents BIO commands of SSl or TLS ?
Regards Esbold
___
On Sun, Nov 11, 2001 at 09:50:26AM +0200, Sharon Hezy wrote:
> I'm trying to implement client authentication with OpenSSL client & server.
> Everything works fine: server asks for client's certificate, gets it &
> verification successes too. The only problem is that I can't make client to
> send t
Title: ÉϹØϵͨ£¬½±ÉÌÎñͨ£¡
ÉϹØϵͨ£¬½±ÉÌÎñͨ
Hi to the ML,
I got a big pb with apache-ssl (debian)
It was running well, but now when I want to connect in https, the server
ask me if I accept the certificat and after it give me the following
message:
the connection contained no data.
What's on?
Thank's.
Regards.
Laurent.
___
Hi
At 08:24 12.11.2001 +0100, you wrote:
>I am doing a lot of client programming replacing the browser by a client
>program.
>To verify my program I look at the browser output with ngrep.
>But in case of SSL I don't see anything. Is there a solution for this need.
maybe ssldump ??
regards
Eric
20 matches
Mail list logo
