Dear List:
According to Bruce Schneier, there is a security problem with OpenSSL's
ASN.1 implementation. I have searched the OpenSSL Web FAQ and the
list archive, but have not found any mention...
Any comments/feedback will be appreciated.
Many thanks!
Andrew.
SCHNEIER d
Williams, Jeff wrote:
>As
>for Netscape, I'm having a problem getting Netscape to import the Root
>Authority.
>
This is a known problem.
The only way to import a new root inside Netscape 4.x is to create an
HTML page with a link that points to the certificates, and install by
clicking on the li
Someone know if there is an simple OpenSSL function that say format (PEM or DER) of a
given certificate?
Tnx,
Francesco Dal Bello
__
OpenSSL Project http://www.openssl.org
User Support Mailing Li
> "Lutz.Jaenicke" == Lutz Jaenicke <[EMAIL PROTECTED]> writes:
Lutz.Jaenicke> I am not familiar with SMTPfeed, but I am quite familiar with
Lutz.Jaenicke> postfix :-) The message above means, that the mail body was sent
Lutz.Jaenicke> out successfully. According to RFC821, the body is finishe
On Mon, Mar 18, 2002 at 06:08:49PM +0100, Ralf S. Engelschall wrote:
> | Mar 18 10:27:36 postfix/lmtp[83321]: 57F961950B: to=<[EMAIL PROTECTED]>,
> | relay=127.0.0.1[127.0.0.1], delay=863, status=deferred (conversation with
> | 127.0.0.1[127.0.0.1] timed out while sending end of data -- message m
Michael Katz wrote:
>
> Trying to get SSL running for the first time. Using Apache 1.2.23,
> openssl-0.9.6c, mod_ssl-2.8.7-1.3.23.
>
> After creating the virtual host and restarting apache I get the following
> errors:
>
> [Mon Mar 18 09:22:56 2002] [error] mod_ssl: Init:
> (secure.raeinternet
Ralf S. Engelschall wrote:
> As you can see, SMTPfeed (the LMTP service reported here by Postfix) on
> mmx.engelschall.com tried many times to deliver the message because the
> connection timed out in the middle of the SMTP conversation. And, yes,
> as the log also says, the result could be that
Theresa,
I'm new to OpenSSL so can not speak to this very well. One example at least
I "can" offer.
I just installed NetBSD 1.5.1 as one of many ongoing project evaluations, I
noticed that OpenSSL was included in the packages it installed from the
default full install selection.
My guess wou
I'm having a slight problem, I've created a my own root authority file and
signed a certificate with it. I've successfully imported the Root Authority
into Internet Explorer and IE sees the certificate without any warnings. As
for Netscape, I'm having a problem getting Netscape to import the Roo
Ralf S. Engelschall wrote:
> ... According to the Postfix logfile for this particular mail and
> the receiving MTA, it is the problem of the receiving MTA or the network
> connection to it:
There you have it, Ralf -- the problem is with Postfix itself. Other
mailing lists don't have this probl
Yes, I see the same thing in my headers.
I've also addressed this to <[EMAIL PROTECTED]> to try to get
their attention to investigate their email logs.
A valid STMP host on the net should route the postmaster address to an admin.
per RFC822.
Sometimes mmx.engelschall.com shows up in the header as
Trying to get SSL running for the first time. Using Apache 1.2.23,
openssl-0.9.6c, mod_ssl-2.8.7-1.3.23.
After creating the virtual host and restarting apache I get the following
errors:
[Mon Mar 18 09:22:56 2002] [error] mod_ssl: Init:
(secure.raeinternet.com:443) U
nable to configure verify l
I am a graduate student writing a paper on OpenSSL and I wonder if you can
help me with some information regarding the user base. I was not able to
find the info on the website Openssl.org.
To the best of your knowledge, how large is the user base for OpenSSL?
What is the annual growth rate so f
On Mon, Mar 18, 2002, Lance Nehring wrote:
> Yes, I see the same thing in my headers.
> I've also addressed this to <[EMAIL PROTECTED]> to try to get
> their attention to investigate their email logs.
> A valid STMP host on the net should route the postmaster address to an admin.
> per RFC822.
>
I doubt it's the user agent ("client") that's at fault. I sometimes receive
duplicates from openssl-users (and may have from openssl-dev, though with
its lighter traffic it's less apparent), but I haven't always seen
duplicates when other people post complaints about them. I've never
received du
X-Mailer: PMMail 2.10.1999 for OS/2 Warp 4.05
- rb
On Mon, 18 Mar 2002 16:10:35 +0200, Emanuel Dejanu wrote:
|See that is quite strange. My assumption is I don't think it has to do
|with the Mailing list server itself but rather your Mail Client
|applications. Why not post the client's everyon
> Oscar wrote:
>
> Hello. I try to create a Intermediate CA but i don´t know to do it. I
> create a CA root self signed but the pathlen is 0, it means that this
> CA signed end user, is it? Then how i create a intermediate CA? And
> possibly i want to create a second intermediate CA who sign this
Accept is returning me a bad asn1 object header
error can nebody explain me what are the possiblw causes of this
error
i am using sslv23server method and have
initailized SSL _CTX SSL SSL method objects without any errors
-SIGTERM
amit
Lotus Notes
Oscar Valenzuela
Unix System Support
212 326-6465
"Andrew T. Finnell" <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
03/18/2002 08:51 AM
Please respond to openssl-users
To: <[EMAIL PROTECTED]>
cc:
Subject: RE: Duplicate
Hi slim,
use the snapshoots version of openssl.
Bye
Haikel MEJRI
National Digital Certification Agency
Slim CHTOUROU a écrit :
> hi
> could any body tell me how can I find the openssl req -subj option wich version
> should I use to make this option available I must use it for openca
> regard
Hello,
looking thru mail envelopes it seems to me that host
mmx.engelschall.com
sends the same message more that one time.
Ales Privetivy
Two sample mail headers:
--
>From [EMAIL PROTECTED] Mon Mar 18 15:02:28 2002
R
Microsoft Outlook 2000 / Windows 2000
Emanuel
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Andrew T. Finnell
Sent: 18 martie 2002 15:51
To: [EMAIL PROTECTED]
Subject: RE: Duplicate Posts
See that is quite strange. My assumption is I don't think it h
hi,
I am using openSSL 0.9.5a 1 Apr 2000. Here, I have observed a thing:
#include
#include
#include
main()
{
SSL_CTX *myCtx = NULL;
SSL *mySSL = NULL;
SSL_METHOD *myReqMethod = SSLv2_client_method();
if (SSL_library_init() != 1) {
printf("S
Hello. I try to create a Intermediate CA but i
don´t know to do it. I create a CA root self signed but the pathlen is 0, it
means that this CA signed end user, is it? Then how i create a intermediate CA?
And possibly i want to create a second intermediate CA who sign this CA? (CA
root-->CA i
Lotus Notes 4.6.1
"Andrew T. Finnell" <[EMAIL PROTECTED]> on 03/18/2002
08:51:20 AM
Please respond to [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
cc:(bcc: Joel Jirak/Lex/Lexmark)
Subject: RE: Duplicate Posts
See that is quite strange. My assumption is I don't think it has to do
with
See that is quite strange. My assumption is I don't think it has to do
with the Mailing list server itself but rather your Mail Client
applications. Why not post the client's everyone is using that is
receiving duplicate posts? If they are all the same then it's a safe bet
it's the client. I am s
Trying to build Openssl-0.9.6b on Dynix 4.4.4 and selected Configure -cc
the make fails as follows:
cc -o openssl -DMONOLITH -I../include -O openssl.o verify.o
asn1pars.o
Undefined first referenced
symbol in file
__bsd_accept
Hi
I have to install openssh and openssl is a prerequisite. I have never dealt with
this package. Is there an SSL for dummies book out there ?
Does it run any type of daemons ? How do you get started after initial install?
__
O
hi
could any body tell me how can I find the openssl req -subj option wich version
should I use to make this option available I must use it for openca
regards
Hi,
We hav a CA certificate and Client certificates generated using
openssl. All configurations are default ones. My doubt is if/when the CA
expires and I renew/extend its life, will the Client certificates get
affected in anyway. In our case, the Client certificates are stored in
hardware
Gary Chen wrote:
>Pls run the CA.pl in the path /usr/ssl/ because the path of the ca
>private key is the relative path of /usr/ssl.
>Or, u should modify the openssl.cnf file to change the private key
>path to the absoulte path.
This doesn't seem to be the problem. The path in open
I have the same problem.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Aarno Syvanen
Sent: 18 martie 2002 10:40
To: [EMAIL PROTECTED]
Subject: Re: Duplicate Posts
"Roger F. Borrello, Jr." wrote:
>
> Am I the only one getting 4 or 5 copies of posted m
Hello Martin Centner,
Pls run the CA.pl in the path /usr/ssl/ because the path of the ca
private key is the relative path of /usr/ssl.
Or, u should modify the openssl.cnf file to change the private key
path to the absoulte path.
Monday, March 18, 2002, 4:29:51 PM, you wrote:
MC> Hi
"Roger F. Borrello, Jr." wrote:
>
> Am I the only one getting 4 or 5 copies of posted messages?
No, I have the same problem.
Aarno
__
OpenSSL Project http://www.openssl.org
User Support Mailing L
Hi all!
I've got a problem parsing the CA's private key file generated by the
utility CA.pl. When CA.pl wants to read the private key of the CA
(/demoCA/private/cakey.pem) and I enter the _correct_ PEM pass phrase I
always get the following error:
#> /usr/ssl/misc/CA.pl -sign
Using configurat
35 matches
Mail list logo
