If someone has implemented software protection (that isn't already in
place), I sure hope they share it with the rest of us.
That's really the only level where we as SSL programmers have reasonable
control, but only after making sure we have a good firewall and a solid
TCP/IP stack in place.
On 8
Title: RE: openssl is not recognized as an internal or external command
Since
that last mail I think I have finally created my certificate (once I figure
this all out I think I might right a how to guide for newbies).
Anyway, now I have my certificate I want
to setup a page on my localho
Title: RE: openssl is not recognized as an internal or external command
Thanks steve,
If you've done a standard Windows build you'd have various DLLs and
executables in the out32dll directory. They should be copied somewhere on your
PATH.
copy out32dll\libeay32.dll c:\windows\system
cop
Sometimes a picture is worth a thousand words:
The "Standard Model" of Certificate generation:
On the server machine: Generate CSR operation
+-+ +-+
| Private Key | | Certificate Signing Request |
+--+--+ |
Depends on the attack itself?
are you worried about syn flood type attacks, on the tcp port itself?
or are you worried about ssl attacks that go through with ssl negotiation
and simply strive to consume processing resources?
the former has several solutions, including firewalls.
the later is no
Rohan Pinto wrote:
>I wrote
What you need to do is:
1. create a root certificate
2. install that root certificate into all your web browsers
3. create a CSR on the server
4. use the root to sign that CSR into a server certificate
This is the part that i would need help on. I have created a root
c
Shawn,
Thanks for the response.
It's a lovely thought, but it's not as simple as sticking in a firewall I am
afraid .. that leaves
me open to attacks that can't be blocked by the firewall ..
such as attacks from inside the firewall, or attacks from outside that use
the correct port and appear to
On Tue, Aug 19, 2003, Rohan Pinto wrote:
> This is the part that i would need help on. I have created a root
> certificate, I've imported that into all my web browsers and also on the
> webserver. I have also crested a cSR from the webserver. I dont know how to
> sign the CSR If I could get s
On Mon, Aug 18, 2003 at 08:19:39PM -0700, Josh Chamas wrote:
> Hi,
>
> I recently ran into a problem building Crypt::SSLeay against
> perl 5.6.1 and openssl 0.9.7b on HP-UX 10.20. The problem was
> that for the standard cc compiler on that platform, the "+z" CC_FLAG
> needed to be added to the Ma
