Re: P7B to PEM format Conversion.

Hi srinu Cat the cert in PEM the last one need to be the Root CA RootCA, SubCa1, Sub-SubCA1 Exemple: ]# cat Sub-SubCA1 > ./path/to/cachain.pem ]# cat SubCA1 >> ./path/to/cachain.pem }# cat RooCA >> ./path/to/cachain.pem Ciao! > srinu wrote: > > I have a Root Certificate and another Interme

RE: FW: updates (SSL-Certificates-HOWTO)

Michael, As you may read below, I have written an SSL HOWTO. Averroes, suggested to me to use the text of the configuration file on your site to describe the openssl.cnf file. I know that you have released your software under GPL, but I prefer to ask you if you authorise me to include some part o

Re: FW: updates (SSL-Certificates-HOWTO)

Hi Franck, Cool How-to But it be nice to describe all relevant options in config file "openssl.cnf" before to build any certificate. Since the default option are simple. You should take in consideration the config file of pyCA: http://www.pyca.de/config.html Regards Franck Martin wrote: > > F

ÉÏÍø£¬Äú¿¼ÂǹÜÀíÁËÂð£¿

ÉÏÍø£¬Äú¿¼ÂǹÜÀíÁËÂð£¿

Re: Running Apache/SSL and openSSL on Solaris 7

Waleed, I would install Apache first, but it really doesn't matter. Check-out www.apache-ssl.org E. At 06:06 PM 12/3/01 -0600, you wrote:   I need a document that states what should be installed first or if it does not matter to install APACHE then OPENSSL    Can you please answer these questions

REMOVE

REMOVE__ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]

OpenSSH Keys and JSSE

Is it possible to use key/certificates that are generated with OPENSSH in Java Secure Sockets and vice a versa keys created with keytool can be used with openSSH? If no, how do I get the 2 to work together? Thanks JL __ OpenSS

Running Apache/SSL and openSSL on Solaris 7

  I need a document that states what should be installed first or if it does not matter to install APACHE then OPENSSL    Can you please answer these questions for me:    I already have Apache 1.3.20 installed and running  I would like to get APache/SSL also running, do I remove Apache 1.3

FW: updates (SSL-Certificates-HOWTO)

For your information I will now add the comments I have received as well as the ssl-cert-HOWTO.txt inside it... Franck Martin Network and Database Development Officer SOPAC South Pacific Applied Geoscience Commission Fiji E-mail: [EMAIL PROTECTED] Web site: http:/

random file???

I am trying to run the command line /usr/local/ssl/bin/openssl -req -new -nodes -keyout private.key -out public.csr to create a verisign certificate. I am getting the PRNG not seeded error message. How do I create a .rand file? Any suggestions? Thanks I read the faq, not a lot of help: [USER

Re: Q about padding

Keresztfalvi Laszlo wrote: > > > > When decrypting the final block is checked to see if it has the correct > form. > > Although the decryption operation can produce an error if padding is > enabled, it is not a strong test that the input data or key is correct. A > random block has better than

REMOVE

REMOVE --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.286 / Virus Database: 152 - Release Date: 9/10/2001 __ OpenSSL Project htt

bad rsa decrypt

Hello, I am getting this error with Apache Web Server and mod_ssl (2.8.3-1.3.19)   OpenSSL: error:1408B076:SSL routines:SSL3_GET_CLIENT_KEY_EXCHANGE:bad rsa decrypt   I get this error while testing my http server with "openssl s_client -connect localhost:443" What is wrong ?   Anyone can help

bad rsa decrypt

Hello, I am getting this error with Apache Web Server and mod_ssl (2.8.3-1.3.19)   OpenSSL: error:1408B076:SSL routines:SSL3_GET_CLIENT_KEY_EXCHANGE:bad rsa decrypt   I get this error while testing my http server with "openssl s_client -connect localhost:443" What is wrong ?   Anyone can hel

bad rsa decrypt

Hello, I am getting this error with Apache Web Server and mod_ssl (2.8.3-1.3.19)   OpenSSL: error:1408B076:SSL routines:SSL3_GET_CLIENT_KEY_EXCHANGE:bad rsa decrypt   I get this error while testing my http server with "openssl s_client -connect localhost:443" What is wrong ?   Anyone can hel

Re: RSA Keys

On 03.12.2001 11:39:54 owner-openssl-users wrote: >Hi > >Sorry for the resend. >This is a resend with the complete encoding type. > > >I am getting a file from a MS machine that contains an exported public >key. This data appears to be binary data. It has been exported with the >flag X509_ASN_EN

IE5 on Mac - Security Problem

I've seen similar posts on the following topic here but as yet no solution. I get "Security Failure: Data encryption error" using IE 5.0 on a Mac when I attempt to connect to a secure server running openssl 0.9.6.a. How do I configure the server to get round this? ___

RE: ssl-cert-HOWTO.txt for review

Andrew, openssl is rather "mixer" than "generator" or random data. No deterministic (ok, stable) program can make something random. To make a random secret one need some input unavailable to attacker. /dev/random is "internal" enough and could be quite a good one. regards, Vadim On Mon, 3 Dec 2

REMOVE

REMOVE -- This message is intended only for the personal and confidential use of the designated recipient(s) named above. If you are not the intended recipient of this message you are hereby notified that any review,

RE: ssl-cert-HOWTO.txt for review

Title: RE: ssl-cert-HOWTO.txt for review     If openssl can generate random data and spit it out in a file then why use a file to begin with? Can't openssl ( tool ) just generate its random data internally and use that? I think that's a lot safer than spitting it out to a file and prevents

Q about padding

Gens, I'm new to encryption and just thinking about an application using SSL to communicate and also for data (file) encryption both by OpenSSL (of course :-) I found the next paragraphs in the EVP doc (http://www.openssl.org/docs/crypto/EVP_EncryptInit.html#) When decrypting the final block

REMOVE

Title: REMOVE REMOVE

21ÊÀ¼ÍµÄÌØ´óÉÌ»ú

Èç¹ûÕâ·âÐÅÓ°Ïìµ½ÄúµÄ¹¤×÷£¬»òÕ¼ÓÃÁËÄúµÄʱ¼ä£¬¾ÍÇëÄúÁ¢¼´É¾³ý¡£Èç¹ûÄúÄܳé³öÒ»µãʱ¼äÀ´Á˽â21ÊÀ¼ÍµÄÌØ´óÉÌ»ú£¬¿ÉʹÄúºÍÄúµÄÆóÒµ´ïµ½³É¹¦µÄ¶¥·å£¬Ò»ÇÐÉúÃüµÄ½¡¿µ¿É³ÖÐø·¢Õ¹¶¼²»ÄÜÀ뿪µÄÊÂÒµ¡£Î人ÕñÒµ£¨EVERPURE£©ÒûË®É豸¿ª·¢ÓÐÏÞ¹«Ë¾ÏòÈ«¹ú¸÷µØ³ÏÕдúÀí¡¢¾­ÏúÉÌ¡£¸÷µØÇøÏÞ±¨Ò»Ãû£¬ÁãͶÈ룬Áã·çÏÕ£¬ÎÞÏ޻ر¨£¡

[no subject]

Hello everybody, I use now openssl library for implement a protocol over ssl. for test it I want to create a certificate Authority CA(root), an other CA called(CA Member) signed by Root certificate and a certificate for a user(Allan) as client. My protocol use a connection ssl between a clie

Re: ssl connection from Eudora or Outlook

On Sat, Dec 01, 2001 at 12:05:43AM -0800, Edgar Hodge wrote: > I have a ssl connection problem and would like to know if anyone out there > can assist with resolving the problem. > > I am using stunnel/ssl to connect on port 995 (Unix Solaris 8.0) from a > Windows machine running Eudora 5.1. >