I investigate the security of the SSL protocol, I have 2 question about ssl version 2.0.
in the ciphersuites defined for it in "rfc2246"( TLS1.0), there isn't diffi-helman key exchange, why?
What is the soulotion for vulnerability in anonymous key exchange pointed by Bruce Schneier (analysis of
Hi all,
My application needs to support Non-repudiation using X509 certificates ala
AS2.
Has anyone had the pleasure of storing X509 client and server certificates
in the windows certificate registry / database? And if so, whats the best
place to start to convert X509 to the windows format?
Than
Is your client sending only its certificate, or are you sending the entire
certificate chain?
It looks like your server is unable to rebuild the cert. chain from the client
to the root.
-Original Message-
From: "Fco .J. Arias" <[EMAIL PROTECTED]>
Sent: Jul 6, 2005 2:47 PM
To: openssl-u
Hello I'm trying to use apache with client auth, but I can't. The
problem is in logs errors:
.
.
.
before other CA
a, B ,C ,D, E, F are strings
.
[Wed Jul 06 21:56:47 2005] [debug] ssl_engine_init.c(1095): CA
certificate: /C=A/ST=B/L=C/O=D/OU=Webserver
Team/CN=www.foo.com/[EMAIL PROTECTED]
[Wed Ju
So i have try openssl-0.9.8 with the option no-asm. But the same result:
gcc -o out\md2test tmp\md2test.o out\libssl.a out\libcrypto.a -lwsock32
-lgdi32
out\libcrypto.a(cryptlib.o)(.text+0x2b9):cryptlib.c: undefined reference to
`OPENSSL_ia32_cpuid'
collect2: ld returned 1 exit status
-Origi
Frank Buttner wrote:
I have try Version openssl-0.9.7g this compile without any problems.
So i think it is not a problem with the path
"ms\mingw32 no-asm" complies cleanly and produces the DLL files.
C:\c++\OpenSSL\openssl-0.9.8>ms\mingw32
Okay, assume the paths are fine. The two command
I have try Version openssl-0.9.7g this compile without any problems.
So i think it is not a problem with the path
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Thomas J. Hruska
Sent: Wednesday, July 06, 2005 10:08 PM
To: openssl-users@openssl.org
Subjec
Jim Mosier wrote:
I am not sure what I did different, but my environment is:
WindowsXP Pro
MinGW 3.1.0
ActiveState Perl 5.8.7
"ms\mingw32 no-asm" complies cleanly and produces the DLL files.
Hmm...
On 7/6/05, Frank Buttner <[EMAIL PROTECTED]> wrote:
So here the output:
C:\c++\OpenSS
I use XP SP2 and mingw 4.1 and ActivePerl 5.8.7 Build 813
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jim Mosier
Sent: Wednesday, July 06, 2005 9:42 PM
To: openssl-users@openssl.org
Subject: Re: openssl-0.9.8 will not compile on MinGW
I am not sure w
I am not sure what I did different, but my environment is:
WindowsXP Pro
MinGW 3.1.0
ActiveState Perl 5.8.7
"ms\mingw32 no-asm" complies cleanly and produces the DLL files.
On 7/6/05, Frank Buttner <[EMAIL PROTECTED]> wrote:
> So here the output:
>
> C:\c++\OpenSSL\openssl-0.9.8>ms\mingw32
So here the output:
C:\c++\OpenSSL\openssl-0.9.8>ms\mingw32
C:\c++\OpenSSL\openssl-0.9.8>perl Configure mingw
Configuring for mingw
no-gmp [default] OPENSSL_NO_GMP (skip dir)
no-krb5 [krb5-flavor not specified] OPENSSL_NO_KRB5
no-mdc2 [default] OPENSSL_NO_MD
In message <[EMAIL PROTECTED]> on Wed, 6 Jul 2005 18:53:43 +0200, "Frank
Buttner" <[EMAIL PROTECTED]> said:
frank-buettner> What data do you need. Can I send you the full output
frank-buettner> of the compiling process?
Configuration and compilation, yes please.
Cheers,
Richard
-
Please co
I seem to be having some build problems. I'll describe what's happening below.
I'm trying to install
openssl 0.9.8 onto OS X 10.4.1. I have the Xcode 2.1 tools installed.
Firstly, I downloaded the tarball using "curl" to make sure that Safari wasn't
causing me any grief. The installed
curl is 7.
In message <[EMAIL PROTECTED]> on Wed, 6 Jul 2005 09:07:23 -0700, "Choudhary,
Bimalendu" <[EMAIL PROTECTED]> said:
bchoudhary> 2) When I send the serial number 0x81 the der encoded
bchoudhary>serial number is
bchoudhary>
bchoudhary> 02 02 00 81
bchoudhary>
bchoudhary> 4) When I send the ser
In message <[EMAIL PROTECTED]> on Wed, 06 Jul 2005 12:00:24 -0300, Rafael
Cividanes <[EMAIL PROTECTED]> said:
rafacividanes> I was looking this discussion you have
rafacividanes> mentioned. But for my application I just need a free
rafacividanes> secure implementation of Shamir's Secret Shari
What data do you need. Can I send you the full output of the compiling
process?
-Original Message-
From: Richard Levitte - VMS Whacker [mailto:[EMAIL PROTECTED]
Sent: Wednesday, July 06, 2005 6:47 PM
To: [EMAIL PROTECTED]
Subject: Re: openssl-0.9.8 will not compile on MinGW
In message <
Hi,
I am using an OCSP command to sned ocsp request to my program using
following command
Openssl ocsp -serial 0x80 -issuer issuer.pem -text -url http://myprogram
When I see the actual DER encoded request which openssl sends, I found
different behaviour for different serial numbers.
1) Whe
Hi,
> I would like to personally thank the entire OpenSSL team on behalf of
> everyone using OpenSSL in any form. You guys do a terrific job with
> this project and this latest release is, well, wow. The number of
> changes in this release are insane. Keep up the great work!
ditto. but I h
Hello,
I have the public key certificate in cert.pem and I want to
extract the public key and store it in file pubkey.pem. I did
it with the following command: (openssl v.0.9.7a)
openssl x509 -in cert.pem -pubkey -noout > pubkey.pem
However the following command did the strange things:
opens
This is the segmentation-fault line inside destest.c
DES_ede3_cbcm_encrypt(cbc_data,cbc_out,16L,&ks,&ks2,&ks3,&iv3,&iv2,DES_ENCRYPT);
I'm using gcc as stated below:
Reading specs from
/usr/local/gnu_r342_solaris9/bin/../lib/gcc/sparc-sun-solaris2.9/3.4.2/specs
Configured with: ../gcc
[EMAIL PROTECTED] wrote:
Hi there, I've finaly compiled 0.9.8 under BCB win32 (Yay!) and now wondering
is there any way do make dlls instead of .libs?
If you are using the default build of OpenSSL:
http://www.slproweb.com/products/Win32OpenSSL.html
It comes with pre-built binaries and librar
Richard Levitte - VMS Whacker wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
>
> OpenSSL version 0.9.8 released
> ==
>
> OpenSSL - The Open Source toolkit for SSL/TLS
> http://www.openssl.org/
>
> The OpenSSL project team is pleased to
Richard Levitte wrote:
Rafael Cividanes writes:
Hi,
I'm looking for a secure implementation of Shamir Secret Sharing
algorithm in OpenSSL Project. I coudn't find anything in the page
(www.openssl.org).
Is there any free implementation like that of Shamir's algorithm?
We did talk abo
Richard Levitte wrote:
Rafael Cividanes writes:
Hi,
I'm looking for a secure implementation of Shamir Secret Sharing
algorithm in OpenSSL Project. I coudn't find anything in the page
(www.openssl.org).
Is there any free implementation like that of Shamir's algorithm?
We did talk abou
But i use mingw and not cygwin.
And on mingw it will not work.
Only perl Configure mingw will work.
But make will fail.
At make I only get messages about the contes of my disk.
-Original Message-
From: Jim Mosier [mailto:[EMAIL PROTECTED]
Sent: Wednesday, July 06, 2005 4:42 PM
To: [EMAIL
Rafael Cividanes writes:
Hi,
I'm looking for a secure implementation of Shamir Secret Sharing
algorithm in OpenSSL Project. I coudn't find anything in the page
(www.openssl.org).
Is there any free implementation like that of Shamir's algorithm?
We did talk about it a few years ago. H
This is Windows there will ./Configure not work
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jim Mosier
Sent: Wednesday, July 06, 2005 3:14 PM
To: openssl-users@openssl.org
Subject: Re: openssl-0.9.8 will not compile on MinGW
I too was unable to compil
I am sure that this is rookie user stuff, but try as I might, I am
unable to figure out how to create the DLLs:
libeay32.dll
libssl32.dll
to use with the w32 stunnel.
When trying "./Configure mingw -shared" I get the following make error.
make[2]: Entering directory `/cygdrive/c/openssl-0.9.8/t
Hi,
I'm looking for a secure implementation of Shamir Secret Sharing
algorithm in OpenSSL Project. I coudn't find anything in the page
(www.openssl.org).
Is there any free implementation like that of Shamir's algorithm?
Thanks in advance,
Rafael Cividanes.
--
Rafael Cividanes
Insti
I too was unable to compile using MinGW 3.1 but was able to
sucessfully compile using the latest cygwin via the INSTALL.W32
directions.
./Configure mingw
make
On 7/6/05, Frank Buttner <[EMAIL PROTECTED]> wrote:
> Hello, i have tryed to compile openssl but it stops with the error:
> gcc -o out\md
Dr. Stephen Henson wrote:
On Sat, Jul 02, 2005, Dr. Stephen Henson wrote:
On Sat, Jul 02, 2005, Arsen Hayrapetyan wrote:
Hello,
I have the following question:
Suppose you have CA certificate /cacert.pem/ with the following
subjectName:
*/C=xx/O=aa/O=bb/CN=uu*
Al
> I build regularly on Debian [unstable]. It didn't fail, so I wonder how
> your platform differs.
Ok, when I do a ./config && make && make test it works.
But with ./config shared && make && make test it fails.
Now I've found the error:
grsec: From XXX: denied resource overstep by requesting
Standard request:
- configuration log, please
- build log, please (at least if something failed)
I build regularly on Debian [unstable]. It didn't fail, so I wonder how
your platform differs.
Muenz, Michael writes:
Hi,
just tried to install the new version on my debian woody.
All vers
I've got this error during the 'make test' phase.
make[2]: Leaving directory `/Development/OpenSSL/openssl-0.9.8'
../util/shlib_wrap.sh ./destest
Doing cbcm
make[1]: *** [test_des] Segmentation Fault
make[1]: Leaving directory `/Development/OpenSSL/openssl-0.9.8/test'
make: *** [tests] Error 2
Hello, i have tryed to compile openssl but it stops with the error:
gcc -o out\md2test tmp\md2test.o out\libssl.a out\libcrypto.a -lwsock32
-lgdi32
out\libcrypto.a(cryptlib.o)(.text+0x2b9):cryptlib.c: undefined reference to
`OPENSSL_ia32_cpuid'
Hi,
just tried to install the new version on my debian woody.
All versions prior 0.9.8 work fine, but with this one I get
an error while make test:
ecb cast5 ok
This test will take some time123456789ABCDEF ok
../util/shlib_wrap.sh ./randtest
test 1 done
test 2 done
test 3 done
test 4 done
sta
Hi there, I've finaly compiled 0.9.8 under BCB win32 (Yay!) and now wondering is there any way do make dlls instead of .libs?
--
Regards,
scratch mailto:[EMAIL PROTECTED]
37 matches
Mail list logo
