On Wed, Jun 05, 2002 at 03:35:31AM +0300, Vadim Fedukovich wrote:
> hi list,
>
> Naina library may be considered an ASN.1 test; it handles some
> Secure Electronic Transactions messages.
> http://www.unity.net/~vf/naina_r1.tgz
>
> It works with 0.9.7-beta-1, on linux, gcc 2.9.5
>
> It could be
On Tue, Jun 04, 2002 at 08:48:58PM +0200, Folkert van Heusden wrote:
> I'm trying to add SSL-support to my application.
> What I'm doing is basically this:
> init (same for client and server):
> -
> SSL_library_init();
> SSL_load_error_strings();
>
Hi,
I'm trying to add SSL-support to my application.
What I'm doing is basically this:
init (same for client and server):
-
SSL_library_init();
SSL_load_error_strings();
bio_err = BIO_new_fp(stderr, BIO_NOCLOSE);
meth = SSLv23_method
hi list,
Naina library may be considered an ASN.1 test; it handles some
Secure Electronic Transactions messages.
http://www.unity.net/~vf/naina_r1.tgz
It works with 0.9.7-beta-1, on linux, gcc 2.9.5
It could be great to include SET-specific objects into openssl;
patch is there inside
regards,
[Oracle Container for Java is a Java web server, similar to Tomcat]
This is probably more of an oc4j question, but it deals with
cryptography/OpenSSL so I was hoping for some input from folks who may have
encountered this. If nothing else, it will be nice to have in the archives
for those who
Try use dumpasn.
Paolo
>From: "Bob Steele" <[EMAIL PROTECTED]>
>Reply-To: [EMAIL PROTECTED]
>To: <[EMAIL PROTECTED]>
>Subject: What format is this PKCS7 signature in? (No, it's not PEM or DER)
>Date: Tue, 4 Jun 2002 11:45:10 -0700
>MIME-Version: 1.0
>Received: from [195.27.130.252] by hotmail.c
Federico,
You can either encode and decode CopyKey (i.e., call i2d followed by d2i) or increment
the rsa_st's references element using CRYPTO_add. For example:
CRYPTO_add (&CopyKey->references, 1, CRYPTO_LOCK_RSA);
See crypto/threads/mttest.c for setting up mutexes for a multithreaded applica
Greetings I did not get this piece of line..
>This is entirely true. The only browser that can really be
>trusted is one into which new certificates can never be installed
>and which refuses to connect to a site if the certificate can't
>be verified.??
what does this mean ?? than h
Date sent: Tue, 4 Jun 2002 19:45:55 +0200
From: Lutz Jaenicke <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject:Re: zlib double free bug and openssl question.
Organization: BTU Cottbus, Allgemeine Elektrotechnik
Send repl
At 09:16 04/06/02 -0600, you wrote:
>I have said this before in this group and I will repeat it. I see nothing that would
>stop a felon in prison from incorporating a company and getting a cert.
And she should be allowed to. The certificate will say that it was issued to that
company. The ce
NO! You are NOT allowed to leave You HAVE to
stay.
(sorry to the list members for the noise, but I couldna help
maself)
-Original Message-From: Sidney Fortes
[mailto:[EMAIL PROTECTED]]Sent: Tuesday, June 04, 2002 2:30
PMTo: [EMAIL PROTECTED]Subject:
REMOVE
R
Could someone tell me what format this PKCS7 signature is in,
and how I can work with such a format using OpenSSL?
Thanks!
- Bob
MysteryPKCS7.bin
Description: Binary data
REMOVE
Greetings!
I have been searching the OpenSSL headers for a copy function, which
would take a const pointer to a rsa_st structure and return another
pointer to a copy of it, but have not found any. My question is why
isn't there such a function? Are there any "tricks" in the copying
process
On Mon, Jun 03, 2002 at 04:01:38PM -0400, Lenny Miceli wrote:
> I've tried to search the archives/bug reports/faq's and didn't find any
> definitive answers on the zlib Double Free Bug CERT's Advisory CA-2002-07
> issue. Does openssl v0.9.6b or above have this issue? I know if you do a
> stings
Hi,
I'm a new user to OpenSSL Lib.
I'm trying to validate an S/MIME message.
I've got the senders certificate and the CA's certificates. There are 2 CAs
involved (itermediate and root). The problem I'm having is telling the
smime utility to use both certificates to validate the sender's certi
I sort of agree with the sentiments expressed by Shalendra Chhabra. The value added
by M$ or verisign is questionable. I would rather I could pop over to my local bank
and get a cert. They know me and I trust them. I do not trust Verisign.
I have said this before in this group and I will re
As I understand, signing a message means getting its hash/digest and then
encrypting the digest with your private key. So I would assume that RSA_sign
would take as parameter the message, the hash algorithm ID and the private
key.
However, according to the documentation of RSA_sign (3), it take
Does anyone know how to configure openssl.cnf to include the 'qcStatements'
extension in a user certificate?
Thanks...
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
On 4 Jun 2002, Shalendra Chhabra wrote:
> 1. I am able to generate Certificate and Private Key
> using command line options in Openssl.
> can someone tell me are they considered good? and if they are good
> why do we need Certificates from companies like
> Microsoft, Verisign???
Considere
I have created a CA certificate : ca.der
I have create a client certificate : client.der
I wonder how is possible to create a single certificate which includes them
both, that is a single file in der format.
I tried to put them both in pem format, then copy one file to the other and
then "conv
Whether the certificates are "good" or not depends on your usage of them.
As far as securing your own communications, yes they are good(If properly
created with a decent key etc.). The Microsoft, Verisign, Thawte, etc...
certificates are for the general public's peace of mind. They are normally
Hi,
I have a question regarding the Extension Request attributes.
1. What is a ExtensionRequest attribute?
2. How to add ExtensionRequest attibute to a certificate request?
Awaiting for your valuable response.
Regards
Suram
_
I have also run into this problem, and have not been able to resolve it. I'd
guess that the example was originally compiled against an older version of
the library.
-Original Message-
From: Shalendra Chhabra [mailto:[EMAIL PROTECTED]]
Sent: Monday, June 03, 2002 10:05 PM
To: [EMAIL PROTEC
I have only just subscribed to this list so I apologise if I don't
follow protocol. I thought this would be easy but my Web searches
have led to nothing and I can't find a archive for this list :-(
I have had my own CA for a little over a year now (key point).
This has been done using openssl an
See answers below.
I hope it helps.
Best Regards,
Sharon Hezy.
-->-Original Message-
-->From: Shalendra Chhabra [mailto:[EMAIL PROTECTED]]
-->Sent: Tue, June 04, 2002 3:01 PM
-->To: [EMAIL PROTECTED]
-->Subject: Errors
-->
-->
-->I need some help
-->
-->1. I am able to generate Certifica
On Tue, 2002-06-04 at 09:26, Umesh wrote:
> Hi,
>
> I am using openssl-0.9.6d to establish a secure web server. I am having
> some
> problems with the DES-CBC3-SHA (TLS_RSA_WITH_3DES_EDE_CBC_SHA)cipher
> suite. Details below:
>
> Platform: Unix.
> - openssl req -x509 -new -keyout srvkey.pem -o
Hi all,
I've tried to use the following certificate and private key to sign my
own requested certificate but for some reason, openssl coredumps.
Coredumps occur also when trying to obtain information from private key
(with commands like pkcs8, rsa).
Any idea why this is happening? (I can provide
I have downloaded the OpenSSL 0.9.6 24 Sep 2000
version. In
openssl-0.9.6d/openssl-0.9.6d/demos/maurice
when I write make
I get the following errors
cc -g -I../../include -Wall -c -o loadkeys.o loadkeys.c
loadkeys.c: In function `ReadPublicKey':
loadkeys.c:36: too few arguments to function `PEM_
I've tried to search the archives/bug reports/faq's and didn't find any
definitive answers on the zlib Double Free Bug CERT's Advisory CA-2002-07
issue. Does openssl v0.9.6b or above have this issue? I know if you do a
stings on libcrypto.a you find zlib alot, so I assume somehow the zlib librar
I need some help
1. I am able to generate Certificate and Private Key
using command line options in Openssl.
can someone tell me are they considered good? and if they are good
why do we need Certificates from companies like
Microsoft, Verisign???
2. I have downloaded the OpenSSL 0.9.6
Yo!
I'm playing around with openSSL now for a while and set up my own CA.
I would like to create now signed binary Documents (Word, Excel, PDF
etc.) which can be downloaded from a Webserver. My Idea is that the
signature of the binary document will be validated from the Browser at
the Downloa
Hello Stella,
Tuesday, June 04, 2002, 11:14:59 AM, you wrote:
SP> Hi,
SP> I was wondering if someone could clarify this for me. I'm trying to decrypt
SP> a string which has been encrypted in 3DES ECB mode.
SP> I'm using the command line utility and a program I have written to do this.
SP> Acc
Hi,
I was wondering if someone could clarify this for me. I'm trying to decrypt
a string which has been encrypted in 3DES ECB mode.
I'm using the command line utility and a program I have written to do this.
According to the EVP_EncryptInit.html, I should use the cipher
EVP_des_ede3().
However
Hi,
I am using openssl-0.9.6d to establish a secure web server. I am having
some
problems with the DES-CBC3-SHA (TLS_RSA_WITH_3DES_EDE_CBC_SHA)cipher
suite. Details below:
Platform: Unix.
- openssl req -x509 -new -keyout srvkey.pem -out srvcert.pem -days 365
-newkey rsa:1024 -nodes
- openssl
35 matches
Mail list logo
