Don't forget Path Length.
-Kyle H
On 12/28/06, Dr. Stephen Henson <[EMAIL PROTECTED]> wrote:
On Thu, Dec 28, 2006, Aaron Barnes wrote:
> Yes I did. I had to install that yesterday also in order for the
> subordinate to trust the root.
>
> I was reading on the web site (specifically on this we
I will be out of the office starting 12/28/2006 and will not return until
01/02/2007.
I will be out of the office starting December 29th returning to the office
on January 2, 2007.
I'm using OpenSSL 0.9.8d to work on generating X.509 certificates for
use with ECDSA using the SECP384R1 curve. When I generate a certificate,
the public key created is 97 bytes, but I know it should be 96 bytes (2
384 bit parameters for the x,y points on the curve). It shows up as 97
bytes when I
On Thu, Dec 28, 2006, Aaron Barnes wrote:
> I think I see what you're getting at now. I reviewed the text of the
> root and the subordinate certs; the root does NOT have the CA:TRUE
> (false obviously), the subordinate does have CA:TRUE. So I guess this
> tells me I must have installed the roo
I will be out of the office starting 12/20/2006 and will not return until
01/02/2007.
I am out of the office and will not be returning until Jan 2nd. If this is
an emergency please page the ESP oncall Net Tool Pin #19005. Thank you and
have a wonderful Holiday!
I think I see what you're getting at now. I reviewed the text of the
root and the subordinate certs; the root does NOT have the CA:TRUE
(false obviously), the subordinate does have CA:TRUE. So I guess this
tells me I must have installed the root CA incorrectly.
I didn't use CA.pl, but rather C
On Thu, Dec 28, 2006, Aaron Barnes wrote:
> Yes I did. I had to install that yesterday also in order for the
> subordinate to trust the root.
>
> I was reading on the web site (specifically on this web page:
> http://www.openssl.org/docs/apps/x509v3_config.html# ) It would seem to
> indicate on
Yes I did. I had to install that yesterday also in order for the
subordinate to trust the root.
I was reading on the web site (specifically on this web page:
http://www.openssl.org/docs/apps/x509v3_config.html# ) It would seem to
indicate one should modify the basicConstraints lines in the opens
On Thu, Dec 28, 2006, Aaron Barnes wrote:
> I think we're making some progress with resolving this problem. I
> signed a new request with the switch you mentioned and loaded it onto
> the subordinate. I don't receive the old ASN1 error, which is good, but
> now I've received one I've never seen
"debug-bsdi-x86-elf", "gcc:-DPERL5 -DL_ENDIAN -DTERMIOS -fomit-frame-pointer
-O9 -march=i686 -Wall -g::${BSDthreads}::-ldl -lc -lm:THIRY_TWO_BIT_LONG
RC4_CHUNK BN_LLONG ${x86_gcc_des}
${x86_gcc_opts}:${x86_elf_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
This works
I think we're making some progress with resolving this problem. I
signed a new request with the switch you mentioned and loaded it onto
the subordinate. I don't receive the old ASN1 error, which is good, but
now I've received one I've never seen before, "A certificate's basic
constraint extensio
11 matches
Mail list logo
