> > A secure connection to an unauthenticated source is of
> > no value because the unauthenticated source could be
> > the one person who the connection is supposed to be
> > secured from. If there's nobody the connection is
> > supposed to be secured from, why would you care
> > that the connect
On Wed, Dec 06, 2006 at 07:16:32PM +, [EMAIL PROTECTED] wrote:
[ Authentication vs. Authorization ]
Yes, the real issue is that encryption without authentication does
not necessarily provide confidentiality, the party on the other end of
the encrypted connection could be the same attacker tha
> I don't understand this argument at all. The two questions you > seem to
> think are being confused are the *same* question.I don't think so.> When I
> type in "https://www.amazon.com";, what I want> to know is - do I have a
> secure connection to Amazon?This is an authentication question.> A
On Wed, Dec 06, 2006, Stuart Gall wrote:
> Found the problem
> There was prompt=no in the cnf file.
>
> Dont see why that should complain though.
>
The reason for that is that the DN section needs to be formatted appropriately
if prompt=no is set. That uses the more natural style of:
dn_compon
Found the problem
There was prompt=no in the cnf file.
Dont see why that should complain though.
On 6 Dec 2006, at 14:41, Stuart Gall wrote:
Hello,
I have the following problem
openssl req -config client.cnf -new -key ClientCerts/stuart.key -
out ClientCerts/stuart.csr
Enter pass phrase fo
Hello,
I have googled around and have not been able to find a suitable answer for
an error received when "make errors" is attempted when trying to build and
install openssl-0.9.8d. Sorry if I am being to newbie-ish.
First I use config like this:
env CONFIG_SHELL=/bin/sh /bin/sh
./config --prefix
Steve,
Thanks for the help. I finally got this working and figured I'd reply here
in case this might help others.
I found a Java implementation of EVP_BytesToKey() in the JRuby code and
borrowed it. I ran the password through it and the key and IV I got back
didn't mach what openssl enc -d -de
Hello,
I have the following problem
openssl req -config client.cnf -new -key ClientCerts/stuart.key -out
ClientCerts/stuart.csr
Enter pass phrase for ClientCerts/stuart.key:
problems making Certificate Request
30488:error:0D07A097:asn1 encoding
routines:ASN1_mbstring_ncopy:string too long:a
