RE: CSR / CA Issued Certificate

Hi Kevin Here is the part of a document I created where I describe the creation of the CA,server and client certificate. Creation of Certificates I first started by using Openssl (and Perl) to create my own Certificate Authority (CA) from the Linux Box. Below are the steps used for that: 1.

mod_authz_ldap configuration

Anyone has successfully configured mod_authz_ldap based from http://authzldap.othello.ch/ examples or howto? --- Glynn --- __ OpenSSL Project http://www.openssl.org User Support Mailing List

Problem with SSL certificate in apache 2.0.43

Hello: I am trying to set-up apache 2.0.43 using ssl on RedHat 8.0. Here is the sequence of commands I typed: cd /usr/local rpm -e apache httpd mod_ssl mod_perl mod_dav redhat-config-httpd rm -rf /var/www/html /var/www /var/log/httpd /etc/httpd/conf lynx http://www.apache.org/dist/httpd/httpd-2

Re: SSL_MODE_AUTO_RETRY

Yes, that's what the documentation says. Michael - Original Message - From: "Edward Chan" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, October 16, 2002 12:47 AM Subject: Re: SSL_MODE_AUTO_RETRY Cool. So you can basically call SSL_read() and SSL_write() as if they wer

content type error

I am using openssl 0.9.6c.  Also I am ssldump.  When my server sends a message to the client, the handshake went through fine but ssldump reports "Unknown SSL content type 83".  I tried with putting in the header of my messages Content Type: text/plain and with text/html, still got the same

Re: SSL_MODE_AUTO_RETRY

Cool. So you can basically call SSL_read() and SSL_write() as if they were normal read() and write() without having to retry and stuff? I've done a prototype using this option, and I too have not had any problems yet. But just wondering why someone would not want to use this option. Seems lik

Re: Seg Fault on redhat 7.3 openssl 9.6g Any update

Hello again, System completely new set up and updated about an hour ago: Kernel: 2.4.18-3 (shipped) rpm -qa | grep gcc: gcc-2.96-112 gcc-c++-2.96-112 rpm -qa | grep glib: glib-1.2.10-5 glibc-kernheaders-2.4-7.14 glibc-devel-2.2.5-40 glibc-2.2.5-40 glib2-2.0.1-2 glibc-common-2.2.5-40 Opens

REPOST AS REQUESTED: openssl 9.6g Redhat 7.3 Seg Fault

> -Original Message- > From: DARCY,MATTHEW (HP-UnitedKingdom,ex2) > Sent: Thursday, October 10, 2002 1:45 PM > To: '[EMAIL PROTECTED]' > Subject: openssl 9.6g Redhat 7.3 Seg Fault > > Hi, > > I have a redhat 7.3 server which came with an openssl-9.6b rpm > pre-instal

RE: Seg Fault on redhat 7.3 openssl 9.6g Any update

I provided full detail to the group before thats why I was asking "any updated", but I am happy to get the info together again. I am interested in what version of glib and gcc you are using, and with what kernel. I'll repost my first message in a minute. thanks, Matt. -Original Message--

Re: Seg Fault on redhat 7.3 openssl 9.6g Any update

I could not observe such issues and 'make test' is running like a charm - compiled and setup 10 minutes ago. RH7.3 ext2 Some more information may be helpful to help you... Regards, Edin_ DARCY,MATTHEW (HP-UnitedKingdom,ex2) wrote: > Hi, > > I am wondering if there was any update or sug

Seg Fault on redhat 7.3 openssl 9.6g Any update

Hi, I am wondering if there was any update or suggestions on why my openssl 9.6g build fails on make test Any suggestions on some more debugging ??? thanks, Matt. __ OpenSSL Project http

RE: CSR / CA Issued Certificate

Please ... how did you do it? -Original Message- From: Jose Correia (J) [mailto:[EMAIL PROTECTED]] Sent: Tuesday, October 15, 2002 12:26 AM To: [EMAIL PROTECTED] Subject: RE: CSR / CA Issued Certificate Hi Kevin I have successfully used client certificate signed by my own CA using JSSE

library dependencies problems

Can someone explain why OpenSSL is compiled in such a way that it can only work with a single version of libc? Other programs and libraries can generally work across a range of versions within the same major version (e.g. for example glibc 2). How do YOU go about upgrading glibc on a machine you

RE: OpenSSL compile problems

This is the last few lines where the error shows during the ./Makefile -t -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of DARCY,MATTHEW (HP-UnitedKingdom,ex2) Sent: Tuesday, October 15, 2002 4:07 AM To: '[EMAIL PROTECTED]' Subject: RE: OpenSSL compile p

Re: Padding error

Hi, > > I have forwarded this message to the OpenSSL group as well, maybe somebody > > else can give me some good advice too. For people reading this, there was a > > conversation going on before. I have troubles verifying a key using the > > OpenSSL library. The RSA_public_decrypt() function ret

RE: IE request generation just stopped working...

There is no any secret in your file you have: OBJECT classid="clsid:127698e4-e730-4e5c-a2b1-21490a70c8a1" CODEBASE="xenroll.dll" id=Enroll> Your should place new xenroll.dll to your web server for example you put it to root directory and it accessed from http://yourserver/xenroll.dll in your file

Re: IE request generation just stopped working...

What happens is after you apply the new dll to your website and a non-patched client trys to get a cert. a popup comes up asking them if they want the new dll. If they hit yes, they get a cert., if no they don't. At least that the way our site works.

Re: IE request generation just stopped working...

In message <[EMAIL PROTECTED]> on Tue, 15 Oct 2002 07:29:12 -0500, [EMAIL PROTECTED] said: Mark.Shoneman> Windows has supplied a "hot fix" to their enrollment Mark.Shoneman> dll go to m$KB and look at Q323172. I think the problem Mark.Shoneman> may be the new xenroll.dll. Thanks, I'll read it w

Re: IE request generation just stopped working...

In message on Tue, 15 Oct 2002 21:55:44 +0900, "Shalkebaev,AntonMSCAG" <[EMAIL PROTECTED]> said: ShalkebaevA> Just change clsid to 127698e4-e730-4e5c-a2b1-21490a70c8a1 ShalkebaevA> and place your new xenroll.dll to a web server for none updated

RE: IE request generation just stopped working...

Just change clsid to 127698e4-e730-4e5c-a2b1-21490a70c8a1 and place your new xenroll.dll to a web server for none updated clients Anton -Original Message- From: Richard Levitte - VMS Whacker [mailto:[EMAIL PROTECTED]] Sent: Tuesday, October 15, 2002 04:00 To: [EMAIL PROTECTED] Subject: IE

Re: Padding error

hi Peter, On Tue, Oct 15, 2002 at 12:43:24PM +0200, Peter de Vroomen wrote: > Hi Vadim, > > I have forwarded this message to the OpenSSL group as well, maybe somebody > else can give me some good advice too. For people reading this, there was a > conversation going on before. I have troubles ver

Re: IE request generation just stopped working...

Windows has supplied a "hot fix" to their enrollment dll go to m$KB and look at Q323172. I think the problem may be the new xenroll.dll. Mark S. __ OpenSSL Project http://www.o

get certificate chain building up on the cert of an end-entity

Hi! My question is that, if I have a cert, how could i collect the certs on its certificate chain to the rootCA? I need the whole certificates, not only the information about validity! THe best would be one file containing all certs. Is it possible, how? thanks:

Re: IE request generation just stopped working...

In message <[EMAIL PROTECTED]> on Tue, 15 Oct 2002 13:59:37 +0200 (CEST), Richard Levitte - VMS Whacker <[EMAIL PROTECTED]> said: levitte> I did a windows update a few days ago, and since, that page stopped levitte> working. Very precisely, it generates an empty (zero bytes) request. -- Richa

IE request generation just stopped working...

I've probably hacked this incorrectly. I'm doing the usual certificate request page for IE, with the "usual" VBscript to generate a PKCS#10 request. I did a windows update a few days ago, and since, that page stopped working. I'm attaching it, and would be really glad if someone could tell me w