Hi, folks,
Does anyone know how can the encryption key used to
secure SSL communication be changed/rotated over a
long-lived (hours to days) SSL connection to prevent
sniffers from deciphering the key by analyzing a
arge amount of traffic?
Thanks for comments
Paul
___
Hello,
I've searched the archives and Google, but have turned up empty handed.
I currently run a web server that has a self-signed certificate
generated by OpenSSL (Running Apache, Linux, etc). When I try to connect
to the web server via the Vista machine, all I get is a blank page. I
searched fo
Hello,
> I have to interface with a client running
> TLS_RSA_WITH_3DES_EDE_CBC_SHA1. For me, it means:
>
> 1) Authentification with RSA
> 2) Key exchange RSA
> 3) Encrytion 3DES_EDE_CBC
> 4) Digest SHA1
I agree.
> My question is how do they get Key exchange if they not using DH ??
> Another thou
Hi
I have to interface with a client running
TLS_RSA_WITH_3DES_EDE_CBC_SHA1. For me, it means:
1) Authentification with RSA
2) Key exchange RSA
3) Encrytion 3DES_EDE_CBC
4) Digest SHA1
My question is how do they get Key exchange if they not using DH ??
Another thought is that:
1)Client will sen
I don't know if this is causing your problem, but if the session cannot
be re-established due to the timeout, you could set the socket option,
SO_REUSEPORT, on both the client and server sockets when they are
created. (NOTE: Check that it is supported on your platform, if not,
then you would have
On Thu, Mar 15, 2007 at 01:37:41AM +0100, Vladislav Marinov wrote:
>
> 2) This is the server side part:
> static int s_server_session_id_context = 1;
> SSL_CTX_set_session_id_context(tls_info -> ctx,
>(void *)&s_server_session_id_context,
>
jimmy wrote:
> Vladislav Marinov wrote:
>> Hi,
>>
>> Sorry for bothering for a second time on the same issue. I have a
>> problem with
>> session resumption in OpenSSL TLS.
>>
>
> Did you try checking the session timeout value in the server?
>
Hi, thanks for the idea. I checked and unfortunately th
Hi Usman,
I did. Unfortunately it didn't work for me when I use a string buffer to
create a new BIO* [BIO_new(); BIO_pits()]. But the same method works
fine if I create a BIO* using a file [BIO_new_file()]. Please read the
thread carefully.
If u need another clarification of my problem, I'm lit
Vladislav Marinov wrote:
Hi,
Sorry for bothering for a second time on the same issue. I have a problem with
session resumption in OpenSSL TLS.
Did you try checking the session timeout value in the server?
-jb
--
mathematician, n.:
Some one who believes imaginary things appear right
I'm using the OpenSSL DLLs to go along with my e-mail client,
nPOP/nPOPuk, for Windows CE. For myself, I've
successfully compiled 0.9.8d under Windows CE 2.11 for ARM (as well as
MIPS and SH4); I can't find binaries for CE2.11 anywhere on the web.
Some other nPOPuk users would like the binaries
Strange, you posted a question instead of just copying, pasting "BEGIN...END" doing a recompile & rerun :D.
Hope this helps,
Regards,
Usman.
From: Kaushalye Kapuruge <[EMAIL PROTECTED]>Reply-To: openssl-users@openssl.orgTo: openssl-users@openssl.orgSubject: Re: Problem with EVP_Decode and
11 matches
Mail list logo
