PEM pass phrase hard coded

Hi, When i run my SSL server, it keeps asking the PEM pass phrase every time it is started. But i want my server to be loaded automaticaly, wihtout need to type everytime the password. Is there a way to put this password inside the server code and eliminate the need of type the pass everytime ti

Re: Certificate and key pair generation for SSL applications

Sreedhara M. Reddy wrote: Hi, Can someone guide me how to generate certificate and key > pairs for client authentification in SSL applications. First, are you really sure that this is what you want to do? The problem with client certificates is that they tie the client down to a specific workstat

SubjectAltName and two names in one certificate

I used openssl to create a certificate to remove the warning from the browser: "The name on the security certificate is invalid or does not match the name of the site". Once I added IP address in the commonName field in my configure file, the warning was successfully removed whenever I used this IP

Re: Extracting a CRL-distributionpoint from a certificate (2'nd try)

On Mon, Nov 10, 2003, Sebastian Osten wrote: > Hi all! > I'm trying to scratch a distpoint from an X509 certificate. The code is shown > below. It works, but it's a little bit dirty... > 'i2d_DIST_POINT_NAME' delivers me the distpoints, but I have to skip four > bytes the extract the string. >

RE: SSL Shutdown questions

Hi all, I've found out what is casuing my shutdown problems. Basically the server has shut down the socket without sending a close_notify before my client shuts down so it appears to be half closed. The scenario looks like this: <-- Receive FIN, ACK --> Send ACK --> Send TLS close_notify ale

Extracting a CRL-distributionpoint from a certificate (2'nd try)

Hi all! I'm trying to scratch a distpoint from an X509 certificate. The code is shown below. It works, but it's a little bit dirty... 'i2d_DIST_POINT_NAME' delivers me the distpoints, but I have to skip four bytes the extract the string. Does anyone know: - The data type created by 'i2d_DIST_PO

Certificate and key pair generation for SSL applications

Hi, Can someone guide me how to generate certificate and key pairs for client authentification in SSL applications. Thanks!!! Sreedhar --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.516 / Virus Database: 313 - Release Date: 9/1/2

Re: Decrypting SSL packets with openSSL

On Mon, Nov 10, 2003 at 11:23:16AM +1300, Jason Haar wrote: > On Fri, 2003-11-07 at 21:45, Lutz Jaenicke wrote: > > When you are using s_client, you will most likely negotiate an EDH cipher > > that cannot be decrypted with ssldump. Use > > openssl -s_client -ciphers RC4-MD5 ... > > to generate "