On Wed, Jul 25, 2007 at 07:26:27PM -0700, Andy Chan wrote:
> Thanks for the response. I can get #1 to work fine now. As for #2, does
> anyone have code sample for verifying the common name in the server cert
> against the expected name?
>
See Postfix 2.5-20070531-tls-nonprod for the meticulous
Thanks for the response. I can get #1 to work fine now. As for #2, does
anyone have code sample for verifying the common name in the server cert
against the expected name?
- Andy
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Lutz Jaenicke
Sent: Wed
On Wed, 25 Jul 2007 06:19:53 -0700
"David Schwartz" <[EMAIL PROTECTED]> wrote:
>
> > Thanks very much, I'm starting to understand this. One last
> > question: what's the difference between the export password and the
> > password that the system asks for when creating a key for which
> > -des3 wa
Edward,
You have to add /Zi flag to the d32dll.mak file
http://msdn2.microsoft.com/en-us/library/958x11bc(VS.80).aspx
http://www.grandville.net/pmwiki.php/OpenSSL/Openssl-compilation-windows
Best regards,
Arnaud
De : [EMAIL PROTECTED]
[mailto:[EMAIL PROT
On Wed, Jul 25, 2007, Prabhu S wrote:
> Hi,
>
> I have a SSL enabled client application.
> The client connects to the server with which it shares no common ciphers.
> When 200 or more simultaneous connections are made the application crashes.
> The backtrace indicates double free or corruption (!
On Wed, Jul 25, 2007, Andr Ziermann wrote:
> Hello,
>
> CryptoKom (http://www.cryptocom.ru/OpenSource/readme.html) offers a GOST
> engine which, as said, should work with openssl0.9.9. For this, openssl0.9.9
> was adapted to streaming MACs.
> Unfortunately, I cannot find any v0.9.9 tar ball at
On Mon, 23 Jul 2007 23:31:03 +0200
"Dr. Stephen Henson" <[EMAIL PROTECTED]> wrote:
> > Hi, this doesn't seem to be happening. Doesn't the client need a
> > password to decrypt the private key or does the export create the
> > private key in cleartext? I can use the key without ever giving a
> > pa
Hello,
CryptoKom (http://www.cryptocom.ru/OpenSource/readme.html) offers a GOST engine
which, as said, should work with openssl0.9.9. For this, openssl0.9.9 was
adapted to streaming MACs.
Unfortunately, I cannot find any v0.9.9 tar ball at the download page (is it
still http://www.openssl.org/
> Thanks very much, I'm starting to understand this. One last question:
> what's the difference between the export password and the password that
> the system asks for when creating a key for which -des3 was specified?
> Why doesn't the export just inherit/use the key encryption password?
> This i
On Mon, 23 Jul 2007 13:49:21 -0700
"David Schwartz" <[EMAIL PROTECTED]> wrote:
> Decrypting mail requires the private key. The certificate is not
> needed for this purpose. The PKCS12 format provides the ability to
> include a collection of keys and certificates and provides a way to
> encrypt the
Hi there,
Wondering if anybody has built debug version of openssl? I tried doing
this, in the hopes that I could step into the code if I had the symbols.
I recall doing this successfully back when I was using 0.9.7, but I just
tried with 0.9.8e and I'm unable to step into any openssl functions
Cool. I figured you guys are mostly testing with nasm so that's what
I'm using. But I was just curious if anybody has done any benchmark
tests to see whether one assembler generated more efficient assembly
than the other that would result in noticeably better performance.
> -Original Messag
On Wed, Jul 25, 2007, Edward Chan wrote:
> Anybody have any idea which assembler is preferred when building with
> VC8?
>
Currently you can use either but in future nasm will be the only supported
assembler. This is the case with 0.9.9-dev.
Steve.
--
Dr Stephen N. Henson. Email, S/MIME and PGP
> Anybody have any idea which assembler is preferred when building with VC8?
I always build with masm, since it is installed with VC8 (the ml.exe in the
vc\bin directory is masm).
DS
__
OpenSSL Project
Anybody have any idea which assembler is preferred when building with
VC8?
Andy Chan wrote:
>
> I am using SSL_get_verify_result() to check the verification
> result. In addition to the normal checks, I want to do the followings:
>
>
>
> 1) I want to accept certificates even if it’s expired. However,
> I can’t simply ignore the errors *X509_V_ERR_CERT_NOT_YET_
Dear All;
I am trying to use eclipse 3.3 to compile and run OpenSSL 0.98e in Ubuntu
Linux 2.6.17-12-generic
Its my first time with eclipse and I am facing lots of errors that I didn't
face while working in normal
GCC compiler . Please can any one help me :-((
For example :
Dear All;
I am t
17 matches
Mail list logo
