Re: displaying subjectAltName extension unsupported

On Sat, Jan 15, 2005, Kraemmer Thomas wrote: > Is there a way to display the subjectAltName:othername extension > properly with openssl? > > > Doing so with either openssl 0.9.7e or the current snapshot only yields > an incomplete output. > The contents of the othername extension are not shown b

displaying subjectAltName extension unsupported

Title: displaying subjectAltName extension unsupported Is there a way to display the subjectAltName:othername extension properly with openssl? Doing so with either openssl 0.9.7e or the current snapshot only yields an incomplete output. The contents of the othername extension are not show

Re: SSL (or alike) over UDP

On Fri, 14 Jan 2005 21:10 pm, Eduardo Pérez wrote: > Do you know if it's possible to use SSL (or some other protocol) over > UDP running totally in user space. The OpenVPN project runs OpenSSL over UDP, works great. -- Peter 'Luna' Runestig (fd. Altberg), Sweden <[EMAIL PRO

RE: SSL (or alike) over UDP

> On Fri, 14 Jan 2005 21:10 pm, Eduardo Pérez wrote: > > Do you know if it's possible to use SSL (or some other protocol) over > > UDP running totally in user space. > Not possible to use SSL. Some other protocol is potentially > possible, but you > haven't told us what you are trying to accompli

Re: Using OpenSSL on unix to manage certs for Windows boxes (CSR's and PKCS12)

On Fri, Jan 14, 2005, Victor B. Wagner wrote: > On 2005.01.14 at 17:38:29 +0100, Dr. Stephen Henson wrote: > > > > > Does a GOST CSP exist? > > At least two of them. One is developed by CryptoPro, and other by > CryptoCom. There is third major vendor of certified Russian cryptography > on the m

Re: PKCS7_verify and SMIME_write_PKCS7 speed issue

On Fri, Jan 07, 2005, Perry L. Jones wrote: > I have some code that is useing PKCS7_verify and SMIME_write_PKCS7 and > on large files these functions are noticable slow. I have looked > through the openssl code and see that these function are only reading > and writing from arrays that are onl

Re: Using OpenSSL on unix to manage certs for Windows boxes (CSR's and PKCS12)

On 2005.01.14 at 17:38:29 +0100, Dr. Stephen Henson wrote: > > Does a GOST CSP exist? At least two of them. One is developed by CryptoPro, and other by CryptoCom. There is third major vendor of certified Russian cryptography on the market, but I don't know if they have their own CSP implementati

Re: Using OpenSSL on unix to manage certs for Windows boxes (CSR's and PKCS12)

On Fri, Jan 14, 2005, Victor B. Wagner wrote: > On 2005.01.14 at 17:02:51 +0300, Vsevolod Stakhov wrote: > > |>For MSIE you can use Xenroll for that. > > | BTW, it is not clear for me how to create DSA certificates from xenroll. > > | (really I oo need GOST94 certificates, not DSA) > > > > You ca

Re: Using OpenSSL on unix to manage certs for Windows boxes (CSR's and PKCS12)

On 2005.01.14 at 17:02:51 +0300, Vsevolod Stakhov wrote: > |>For MSIE you can use Xenroll for that. > | BTW, it is not clear for me how to create DSA certificates from xenroll. > | (really I oo need GOST94 certificates, not DSA) > > You can use such kind of script for IE: I see that this script d

Re: The time of the openssl-ciphers is constant?

The stablishing of the a symmetric key it has in the handshake and I am calculating the time of the handshake and the time to sent data. __ OpenSSL Project http://www.openssl.org User Support Mailing

Re: Using OpenSSL on unix to manage certs for Windows boxes (CSR's and PKCS12)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Victor B. Wagner wrote: | On 2005.01.13 at 13:55:37 +0100, Dr. Stephen Henson wrote: | |>It doesn't. You can do that of course but the preferred technique is the same |>as every other environment: create a private key on the microsoft box, sign a |>requ

Re: Using OpenSSL on unix to manage certs for Windows boxes (CSR's and PKCS12)

On 2005.01.13 at 13:55:37 +0100, Dr. Stephen Henson wrote: > It doesn't. You can do that of course but the preferred technique is the same > as every other environment: create a private key on the microsoft box, sign a > request with it, send request to the CA and install the resulting certificate.

Re: SSL (or alike) over UDP

Dear all, There is IETF Internet Draft proposed by E. Rescorla that allows TLS over UDP here is the link: http://www.ietf.org/internet-drafts/draft-rescorla-dtls-02.txt -Ibrahim Original Message: - From: Brad Hards [EMAIL PROTECTED] Date: Fri, 14 Jan 2005 21:19:24 +1100 To: opens

Re: SSL (or alike) over UDP

On Fri, 14 Jan 2005 21:10 pm, Eduardo Pérez wrote: > Do you know if it's possible to use SSL (or some other protocol) over > UDP running totally in user space. Not possible to use SSL. Some other protocol is potentially possible, but you haven't told us what you are trying to accomplish, so it har

Re: Using OpenSSL on unix to manage certs for Windows boxes (CSR's and PKCS12)

* Bernhard Froehlich wrote: > Shaun Lipscombe wrote: > > ><>[...] > >One last question... it's to do with client certificates. If I have two > >websites, say, and they both require client certificates signed by the > >CA "ABC. Ltd" there is nothing stopping a client certificate being used > >for

SSL (or alike) over UDP

Do you know if it's possible to use SSL (or some other protocol) over UDP running totally in user space. I'd like to prevent TCP disconnects (SSL over TCP has this problem) I'd also like to use reliable delivery and a stream unreliable delivery protocol over the same connection-oriented base secu