Hello Stephen,
Thanks for helping me, I'm new using open-ssl I really appreciate your support.
OK firstly no, I didn't find the "private-key" string using the binary
editor, I searched for it but I didn't find it.
Thanks for the suggestion, I generated a dummy key with the same
software. After u
I've been working with some patches to curl I found on the curl mailing
list to support openssl and opensc's engine_pkcs11.
Basically it consists of
Curl 7.14 + patch which adds dynamic engine support -> opensc-20050826
[engine_pkcs11.so] -> soft-pkcs11 1.2
on
Ubuntu Linux (5.04) Kernel 2.6
On Wed, Aug 31, 2005, Jason Haar wrote:
>
>
> The other thing is that I can use Outlook to send an encrypted email to
> myself, then access that mailbox using Thunderbird (with the same cert)
> - and Thunderbird reads it fine. So Outlook must have successfully used
> the private key to do the en
Dr. Stephen Henson wrote:
>
>Where was the private key used created? Was it generated under CryptoAPI or
>imported as a PKCS#12 file from an external source?
>
>
>
It was created using OpenSSL - turned into a p12 and imported.
>Due to various deficiencies in the internal format for Windows pri
Thanks, Dr. Henson.
I know those functions work because they perform
search against those "standard" objects based on
length and data fields, i.e., they don't care about sn
or ln.
I guess I am trying to find out, that during the
creation of X509_NAME_ENTRY, when ASN1_OBJECT is
attached,
wh
On Tue, Aug 30, 2005, Roberto Arias Alegria wrote:
> Hello,
>
> I tried to sign a file using a private key (a file with a .key
> extension) using this:
> openssl rsautl -sign -in myfile.txt -inkey mykey.key -out signed
>
> But I got a meesage "unable to load private key".
>
> The private key w
Hello,
I tried to sign a file using a private key (a file with a .key
extension) using this:
openssl rsautl -sign -in myfile.txt -inkey mykey.key -out signed
But I got a meesage "unable to load private key".
The private key was generated using a propiertary software (in fact, a
government-made
Frédéric Donnat wrote:
Hi,
Sorry for the mistake (nothing to deal with openssl.cnf file). I was just
looking for ca.txt file.
Is it normal behavior of openssl to be able to view a certificate without
serial number using (without any error mentioned):
openssl x509 -in some_cert_without_sn.pem
Steffen Pankratz wrote:
...
well, if openssl is build without DES support the DES nids are not
added to the internal list of OIDs when OPENSSL_add_all_ciphers is
called, hence the OBJ_* functions know nothing about DES.
logical
any chance to make openssl aware of -des-ecb when build without DE
On Wed, Aug 31, 2005, Jason Haar wrote:
>
> No - that's not it. I thought of that and so sent myself the email. As
> such it's encrypted with my private key + my public key (i.e. I am Bob
> and Alice) - so that can't be it. It's as though it has encrypting
> rights but not decrypting rights. H
On Tue, Aug 30, 2005, Lincoln wrote:
> Hi,
> Would any guru please take a look at this following
> question? Thanks!
Don't try to access the ASN1_OBJECT structures directly. Use functions such as
OBJ_obj2nid() etc instead.
Steve.
--
Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepa
In message <[EMAIL PROTECTED]> on Wed, 31 Aug 2005 07:11:28 +1200, Jason Haar
<[EMAIL PROTECTED]> said:
Jason.Haar> Richard Levitte wrote:
Jason.Haar>
Jason.Haar> > Jason Haar writes:
Jason.Haar> >
Jason.Haar> >> ... *IT CAN'T READ THE "SENT ITEMS" COPY OF THE EMAIL
Jason.Haar> >> IT JUST SENT*
Hi,
Would any guru please take a look at this following
question? Thanks!
Dr. Lincoln
X509_NAME_add_entry_by_NID() adds a ASN1_NAME_ENTRY
which contains a pointer to ASN1_OBJECT, among other
things.
Does any expert know why the ASN1_OBJECT referenced in
ASN1_NAME_ENTRY has NULL for sn, ln,
Richard Levitte wrote:
Jason Haar writes:
Under Windows (which trusts the CA), Outlook is happy to associate
the cert with digital signing, and can send both signed and encrypted
emails. However (and here's the shocker) *IT CAN'T READ THE "SENT
ITEMS" COPY OF THE EMAIL IT JUST SENT*
Stupid
Also a newbie to ssl, but with the help of this list got it working a few weeks
ago.
This document was very helpful for me when installing on solaris, even though
it is for RH, and you are using debian
http://www.linux-sxs.org/internet_serving/apache2.html
Also, for Common Name, using the IP a
please disregard
-Original Message-
From: [EMAIL PROTECTED]
Sent: Aug 30, 2005 9:24 AM
To: openssl-users@openssl.org
Subject: apachectl startssl question/problem on two boxes
when running usr/local/apache2/bin/apachectl startssl on
a development box, apache starts correctly.
when runni
On Sat, 27 Aug 2005 13:22:19 +0200
Nils Larsch <[EMAIL PROTECTED]> wrote:
> Steffen Pankratz wrote:
> > Hi
> >
> > I compiled OSSL with no-des, so there is no DES cipher available in OSSL.
> > I build a Engine module which supports the des-ecb cipher.
> >
> > openssl engine - dynamic -pre
when running usr/local/apache2/bin/apachectl startssl on
a development box, apache starts correctly.
when running the same command on a new box which
has been upgraded to apache2, the same startssl command,
or apachectl by itself, just displays a menu list.
startssl is not in the menu list.
There may be an option to encrypt the mail with both the receivers and the
sender's public key - just so you can read the message. It's debatable
whether this should be a standard setting or not.
- Tim Metzinger
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Beha
Jason Haar writes:
Under Windows (which trusts the CA), Outlook is happy to associate the
cert with digital signing, and can send both signed and encrypted emails.
However (and here's the shocker) *IT CAN'T READ THE "SENT ITEMS" COPY OF
THE EMAIL IT JUST SENT*
Stupid or what? ;-)
My first
I am having difficulty getting Outlook to read S/MIME encrypted emails,
and I'm wondering what's wrong.
We have an internal PKI, and I have created a signed cert that can be
used for S/MIME. Thunderbird happily sends and receives signed and
encrypted emails with it.
Under Windows (which trus
Hello all,
I'm a newbie in ssl and certificates and I need some explanation about
(I've already red manuals and howtos but still too dark for me) :
On debian,
* To generate a self-signed certificate, I use these commands :
/usr/lib/ssl/misc/CA.sh -newca
openssl req -newkey rsa:1024 -nodes -
Hello,
I am writing an Cryptographic Service Provider using openssl cryptolibrary. I am using RSA_private_encrypt to sign a message instead of using RSA_sign. Does that x509 thing all that necessary? What could be the effect if I generate a digital certificate using my Cryptographic Service Provi
Hi,
Sorry for the mistake (nothing to deal with openssl.cnf file). I was just
looking for ca.txt file.
Is it normal behavior of openssl to be able to view a certificate without
serial number using (without any error mentioned):
openssl x509 -in some_cert_without_sn.pem -text
But to be unable to
Alicia da Conceicao wrote:
Greetings:
The DES_ede3_cbc_encrypt() routine does not appear to properly pad
data to fill out the last block.
Consider, if the last block contains 4 bytes for the unencrypted
text "test", DES_ede3_cbc_encrypt() is only padding the remaining
characters with NULL char
25 matches
Mail list logo
