Hi,
I am just thinking of letting the applications not be security
aware..and do ssh tunneling to the various apps, in which case it
seems pretty secure..Doesnt it?
Thanks,
Sudharsan
On 6/6/06, Kyle Hamilton <[EMAIL PROTECTED]> wrote:
All applications must have the private key, or the public ke
All applications must have the private key, or the public key is
useless. And, a public key is worthless without knowing who or what
it belongs to, which is where certificates come in. (You have an SSH
private key that is used to match up to your SSH public key stored on
the server, for example.
> Anyway, I tried the same procedure on a different computer and it worked
> fine. I then copied the generated files to the first computer. Now the
> apache server will not start, though. And it does not seem to write any
> error in the log file.
>
> Any ideas?
If you enabled SSL in apache, on sta
On Tue, Jun 06, 2006, Charlie Lenahan wrote:
> Does OpenSSL's path validation logic support Bridge PKIs?
>
Not at present, no.
Steve.
--
Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage
OpenSSL project core developer and freelance consultant.
Funding needed! Details on homepage.
H
Has anyone been able to build FIPS 1.0 on an IBM mainframe
running RedHat AS 3.0?
Following “./config fips” the “make”
gets the following error:
+ ../fips-1.0/fipsld -o openssl -DMONOLITH -I.. -I../include
-DOPENSSL_THREADS -D_REENTRANT -DDSO_DLFCN -DHAVE_DLFCN_H -DOPENSSL_NO_KRB5
-
Hello,
> Anyway, I tried the same procedure on a different computer and it worked
> fine. I then copied the generated files to the first computer. Now the
> apache server will not start, though. And it does not seem to write any
> error in the log file.
>
> Any ideas?
If you enabled SSL in apac
Hello,
> >Try for test:
> > openssl rand -base64 10
> >this should hang too.
>
> That does indeed hang too.
Are you running this as Administrator on normal user ?
Yes, my user account has admirator rights.
Anyway, I tried the same procedure on a different computer and it worked
fine. I t
Hi all,
Admittedly this is not the greatest place to talk abt DNSSec. But
well..its abt security :)..so here goes.. As far as i see, DNSSec
provides integrity verification of all DNS data. And it infact allows
assoicating keys with end hosts, making it a PKI. Given that this is
the case, why exact
Does OpenSSL's path validation logic support Bridge PKIs?
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users@openssl.org
Automated List Manager
Hi Kyle,
Thanks, I was wondering about the folloing scenario. I have a single
public key for all apps. Hoever no apps knows the pub key, and all i
do is SSH port forwarding. DOes this have any significant problems?
Thanks,
Sudharsan
On 6/6/06, Kyle Hamilton <[EMAIL PROTECTED]> wrote:
Every appl
I am new to this group so I may be out of line asking this
question, but I have been listening to conversations for a week and it does not
seem to be out of line.
This is the document I used (From Sonicwall technical
support) to create my first 4 SSL user certificates, all were created
Hello,
> >Try for test:
> > openssl rand -base64 10
> >this should hang too.
>
> That does indeed hang too.
Are you running this as Administrator on normal user ?
Best regards,
--
Marek Marcola <[EMAIL PROTECTED]>
__
OpenSS
Hello,
> >Try for test:
> > openssl rand -base64 10
> >this should hang too.
>
> That does indeed hang too.
What version of OpenSSL you use ? (openssl version -a)
Maybe you should try to upgrade your OpenSSL to current version
(if you use some older) or install windows service pack.
Best reg
> What is an entropy file? Is it just a file filled with random data?
Yes.
> How do a
> such?
>
> I am using windows so I doubt the problem is with /dev/[u]random. What
could
> it be then?
This seems to hang on reading random entropy from RAND_screen()
function.
This function calls RAND_pool()
Hello,
> What is an entropy file? Is it just a file filled with random data?
Yes.
> How do a
> such?
>
> I am using windows so I doubt the problem is with /dev/[u]random. What could
> it be then?
This seems to hang on reading random entropy from RAND_screen()
function.
This function calls RAN
> I am trying to setup SSL on my apache server running SVN. I've followed
the
> description from the TortoiseSVN manual. When I execute the line:
>
> bin\openssl req -config bin\openssl.cnf -new -out my-server.csr
>
> It writes:
>
> Loading 'screen' into random state -
>
> And nothing more happen
Hi all,
Well, for me the Makefile in demos/bio was broken, because it wants
to link against static libraries of openssl. For *users* that do
not want to built a static version, or have strange PATH settings,
this little patch makes it working so one can start hacking :)
--- /tmp/openssl-0.
Every application has its opportunity to be stupid and reveal the
private key. This is one reason that wildcard certificates are
generally frowned on as a "worse practice" -- any single one of the
softwares that use the private key can reveal it. (The mantra of
security is: "You have to succeed
18 matches
Mail list logo
