RE: apache with client certificates

2002-09-17 Thread Jose Correia (J)
Hi there I set the depth to 1 and I do have my cache set to: SSLSessionCache dbm:/usr/local/apache/logs/ssl_scache SSLSessionCacheTimeout 300 SSLMutex file:/usr/local/apache/logs/ssl_mutex Still not working... Argghhh, this is so frustrating... any other ideas? Did you put your CA i

Pls. suggest some books on security

2002-09-17 Thread Umesh Vaidya
Hello experts, please suggest me some books on Basics of security, cryptography and SSL(Indian editions are preferable). Your suggestions are appreciated. Thanx in advance. -Umesh Vaidya Missed your favourite TV serial last

Re: session reuse: getting "old session cipher not returned" errors

2002-09-17 Thread Steve Haslam
On Wed, Sep 18, 2002 at 02:58:53AM +0100, Steve Haslam wrote: > So, according to ssldump, the "cipherSuite" entry in the ServerHello is the > same the second time round. Is it a problem that the client seems to be in > "read server hello B" state twice? > > OK, can anyone advise me? Is ssldump re

session reuse: getting "old session cipher not returned" errors

2002-09-17 Thread Steve Haslam
Hi, I'm working on putting SSL/TLS session caching into Exim, and I've almost got it working, borrowing heavily from the mod_ssl dbm caching code. The problem I'm getting is that when I reuse a session from the client side, I get this: Initialised TLS DBM file record "@192.168.254.1" suggests "

Re: apache with client certificates

2002-09-17 Thread Xperex Tim
I am using Apache 1.3.26 with OpenSSL 0.9.6c and client authentication works for me. I have SSLVerifyDepth set to 1 and specified an SSLSessionCache but otherwise my setup is roughly the same as yours. --- "Jose Correia (J)" <[EMAIL PROTECTED]> wrote: > Hi all > > Is anyone aware of Apache ve

Re: POP3/IMAP over SSL problem

2002-09-17 Thread Alin Nastac
My certificate have CN=mx.mysite.ro and I tried with it : https://mx.mysite.ro no warning imaps://mx.mysite.ro --- WARNING pop3s://mx.mysite.ro --- WARNING In DNS, mx.mysite.ro is A record (no CNAME). It is the same certificate on all protocols (I've looked at serial number). Ma

RE: POP3/IMAP over SSL problem

2002-09-17 Thread Manuel Guerrero Martos
smime.p7m Description: application/pkcs7-mime

POP3/IMAP over SSL problem

2002-09-17 Thread Alin Nastac
Hi, I receive a strange error on a WinXP with IE6 when I use a POP3 over SSL account. It says: The server you are connected to is using a security certificate that could not be verified. The certificate's CN name does not match the passed value. My certificate's CN is the same with wha

Re: OpenSSL basic help

2002-09-17 Thread Prasanth
Hi,   Please check the existing server & client implementations in openssl source.     /openssl/openssl-0.9.6g/apps/s_client.c     /openssl/openssl-0.9.6g/apps/s_server.c   Should be of help I guess ;)   -Prasanth   - Original Message - From: Bhavdeep Sharma To: [EMAIL P

OpenSSL basic help

2002-09-17 Thread Bhavdeep Sharma
  Hi all,   I am new to SSL. My apologies if I am asking very stupid. I have downloaded the OpenSSL lib openssl-0.9.6b-lib.zip It contains lib (libssl32.a, libssl.a ... ...) I want to write two test programs, a server and a client that will communicate over SSL on Windows using libssl32.

Problems compiling apache 2.0.40 with openssl-0.9.6g

2002-09-17 Thread A Keane
If anyone has been successful with this on a RH 7.3 box, would you have a look at ssl/lib and tell me if it looks like this? [root@space lib]# ls -al total 2772 drwxr-xr-x2 root root 4096 Sep 16 14:18 . drwxr-xr-x9 root root 4096 Sep 16 14:18 .. -rw-r--r--1 ro