CRLs

2001-12-13 Thread Averroes
Hi lists, This is a repost, Are ReasonCode & CRLReason CRL Extensions implemented in openssl-0.9.6b? idem with: cRLNumber, deltaCRLIndicator how to configure CRL extensions section in openssl.cnf ? And last, there is an "unknown" field in openssl index.txt database field, could it be possile

PKCS1 Compliant

2001-12-13 Thread Tony Vo
Title: PKCS1 Compliant Hello,         Is OpenSSL PKCS1 compliant?  I've noticed that in the function for padding type 2 that the first byte (octet) is 0x00 followed by 0x02 for the second byte (octet).  Is this correct?  According to the PKCS1 specification, the first byte (octet)

ÓòÃû×¢²á£¬Ö÷»ú×âÓã¬Ò»¸ö¹ú¼Ê¶¥¼¶ÓòÃû+200M¿Õ¼äÖ»Ðè150Ôª

2001-12-13 Thread name
ÕâÊÇÀ´×ÔÏÃÃÅÊÐÊý×ÖÒýÇæÍøÂç¼¼ÊõÓÐÏÞ¹«Ë¾µÄÎʺ¸ÐлÄúÊÕ¿´Õâ·âÓʼþ¡£ÎÒÃÇÕæ³ÏµÄÏ£ÍûÄúÄܳÉΪÎÒÃÇÔÚ¹óµØÇøµÄÖØÒª»ï°é¡£Èç¹û´ËÐÅÏ¢¶Ô ÄúÎÞÓã¬ÇëÄú°ÑËüɾ³ý£¬ÔÚ´ËÎÒÃǶÔÄú±íʾǸÒâ!! ÏÃÃÅÊÐÊý×ÖÒýÇæÍøÂç¼¼ÊõÓÐÏÞ¹«Ë¾ÊÇÒ»¼ÒרÃÅΪ¸÷ÀàÆóÊÂÒµµ¥Î»ÌṩÍøÕ¾½¨Éè¡¢Èí¼þ¿ª·¢¡¢Æ½Ì¨·þÎñµÄÐÅÏ¢¼¼Êõ¹«Ë¾¡£¹«Ë¾µÄÄ¿±ê¾

Re: Error when install openssl-0.9.6b in Windows 2000

2001-12-13 Thread Pascal Janse van Vuuren
Apologies, I use static versions of the libraries, that should have been 'nmake -f ms\ntdll.mak' Pascal - Original Message - From: "Pascal Janse van Vuuren" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, December 14, 2001 2:35 PM Subject: Re: Error when install openssl-0.9.6b

Re: Error when install openssl-0.9.6b in Windows 2000

2001-12-13 Thread Pascal Janse van Vuuren
Few questions, and possible (?) solutions 1. What version of Visual C++ are you running ? 2. Are the env. variables set properly ? (E.g. (VC98\bin\vcvars.bat) 3. Try running it from c:\openssl by saying 'name -f ms\nt.mak Can't see if (3) will make a difference, hang on, yes it will. That should

Re: FW: Error when install openssl-0.9.6b in Windows 2000

2001-12-13 Thread Dr S N Henson
"PARKER,Myles" wrote: > > I should have pointed out that I had executed the > command : nmake -f c:\openssl\ms\ntdll.mak when I got the error. > You have to be in the openssl directory (i.e. where you extracted the sources) when you execute the commands or you'll get lots of err

ÄãºÃ£¡

2001-12-13 Thread webmaster
ÄúºÃ! 200M´¿HTML¿Õ¼ä+1¸ö¹ú¼ÊÓòÃû£¬½öÊÛ150Ôª/Äê 200M¿Õ¼ä£¨Ö§³ÖASP£©+200MÆóÒµÓʾÖ+30M AccessÊý¾Ý¿â+1¸ö¹ú¼ÊÓòÃû£¬ ½öÊÛ350Ôª/Äê ÒÔÉÏÖ»ÊÇÁãÊÛ¼Û¸ñ¡£»¶Ó­Ñ¡¹º£¬Ò²»¶Ó­Äú³ÉΪÎÒÃǵĴúÀíÉÌ! ÎÒÃÇ

FW: Error when install openssl-0.9.6b in Windows 2000

2001-12-13 Thread PARKER,Myles
I should have pointed out that I had executed the command : nmake -f c:\openssl\ms\ntdll.mak when I got the error. -Original Message- From: PARKER,Myles Sent: Friday, 14 December 2001 12:04 To: ' [EMAIL PROTECTED]' Subject: Error when install openssl-0.9.6b in Win

Error when install openssl-0.9.6b in Windows 2000

2001-12-13 Thread PARKER,Myles
I am trying to compile openssl. I followed the instructions and then I get the following error:- Microsoft (R) Program Maintenance Utility Version 6.00.8168.0 Copyright (C) Microsoft Corp 1988-1998. All rights reserved. Building OpenSSL NMAKE : fatal error U1073: don't

Re: Java toolkit for SSL???

2001-12-13 Thread Dean Povey
>Hi, > >i tried to find a toolkit that can handle C and Java to make sure beeing 100% compatible,because we have a networkclient application written in C,and also a Browser application written in Java. > >Does anybody know a good SSL toolkit for java? > See http://www.wedgetail.com/jcsi/ -- De

RE: S/Mime Certificates How-to

2001-12-13 Thread Franck Martin
check www.linuxdoc.org Franck Martin Network and Database Development Officer SOPAC South Pacific Applied Geoscience Commission Fiji E-mail: [EMAIL PROTECTED] Web site: http://www.sopac.org/ Support FMaps: http://fmaps.sourceforge.net/

Re: Private key in exernal hardware (engine) ?

2001-12-13 Thread Richard Levitte - VMS Whacker
From: "Alexander Kuit" <[EMAIL PROTECTED]> AKuit> On 13.12.2001 16:45:15 Richard Levitte - VMS Whacker wrote: AKuit> [...] AKuit> >AKuit> I don't have and need access to the private key in the card, I only AKuit> >AKuit> have to make sure the right key is used during the SSL handshake, AKuit> >A

Re: PKI book in relation to VPNs

2001-12-13 Thread Fiel Cabral
Eric, Thank you for your post. Thanks to the other people who posted their suggestions, as well. I bought "Planning for PKI" and it was very helpful. It described the contents of certificates, extensions, PKCS7 and PKCS10 clearly. -Fiel Cabral --- Eric Rescorla <[EMAIL PROTECTED]> wrote: > Fiel C

Re: Private key in exernal hardware (engine) ?

2001-12-13 Thread Alexander Kuit
On 13.12.2001 16:45:15 Richard Levitte - VMS Whacker wrote: >What you're talking about below is something different than what I >answered above. Ok, this seems to be going into the wrong direction, but that's probably my own fault. Let me put some things straight. >Ah. Well, the very simple a

S/Mime Certificates How-to

2001-12-13 Thread Harry Hoffman
Hi, Can anyone point me in the direction of creating/users S/Mime certificates? I've reading the documenatation but am still hazy on a few aspects of how it all works. Thanks, Harry - This mail sent through IMP: http://horde.org/imp/ _

RE: OCSP vs. CRL

2001-12-13 Thread Florian Oelmaier
> There are a number of advantages: > + smaller data to transfer > + some sites may not give you their CRL (for privacy concerns) > + possibly-quicker data, easier (cf indirect CRL's and Freshness) > + if you hash the document and use that as the nonce, you can tie > the OCSP

Re: unable to load CA private key

2001-12-13 Thread Carlos Costa Portela
On Thu, 13 Dec 2001, Michael Sierchio wrote: > Carlos Costa Portela wrote: > > > Mi question is "is this a problem to load the CA private key?". > > What must I do. For you interest, this is the asn1parse output: > > > > You must enter the same passphrase you used to encrypt it. Mistypin

Re: unable to load CA private key

2001-12-13 Thread Michael Sierchio
Carlos Costa Portela wrote: > Mi question is "is this a problem to load the CA private key?". > What must I do. For you interest, this is the asn1parse output: > You must enter the same passphrase you used to encrypt it. Mistyping it (or misremembering it) will yield the results you se

Re: Private key in exernal hardware (engine) ?

2001-12-13 Thread Götz Babin-Ebell
Alexander Kuit wrote: > > On 13.12.2001 10:49:31 Richard Levitte - VMS Whacker wrote: > > >Assuming you have reached a point where you have a RSA that contains > >the public data in a form that OpenSSL understands, and a reference > >(completely chosen by you) to the private data on the card in

Re: Private key in exernal hardware (engine) ?

2001-12-13 Thread Richard Levitte - VMS Whacker
From: "Alexander Kuit" <[EMAIL PROTECTED]> AKuit> On 13.12.2001 10:49:31 Richard Levitte - VMS Whacker wrote: AKuit> [...] AKuit> >This is exactly how it's done in crypto/engine/hw_ncipher.c, why don't AKuit> >you take a look at that file? AKuit> AKuit> Hi Richard, AKuit> AKuit> I had a look a

Re: Private key in exernal hardware (engine) ?

2001-12-13 Thread Alexander Kuit
On 13.12.2001 10:49:31 Richard Levitte - VMS Whacker wrote: >Assuming you have reached a point where you have a RSA that contains >the public data in a form that OpenSSL understands, and a reference >(completely chosen by you) to the private data on the card in ex_data, >you can now do the follo

CA List

2001-12-13 Thread Vijay
Hi I have the client key and the certificate and i want to add it to the CA list which the server needs for client authentication. Can any one please guide me in creating the CA_LIST. Regards Vijay __ OpenSSL Project