Hi,
If I may toot my horn
If you use "not-yet-commons-ssl.jar" from
http://juliusdavies.ca/commons-ssl/ you can skip step #1. It will
convert to java keystore directly from the OpenSSL files. It password
protects the keystore with the same password as the private key.
Assumptions for exam
> > Because that's what HTTP version 1.0 says to do, and you asked
> > for HTTP 1.0
> > behavior. If it didn't, how would the client know when it got the entire
> > request?
> (You mean the entire response, and in particular response body
> aka entity.)
Right.
> Content-length is allowed in 1.0
I have a master and setup replication via syncrepl... It works but now
I would like to set up start_tls on the slave to not only encrypt
traffic during replication but to also to support users that will be
bound to the slave.
Currently my master supports start_tls and ldaps, client contact the
ma
> From: owner-openssl-users On Behalf Of David Schwartz
> Sent: Monday, 14 January, 2008 16:48
> > In fact, I'm not sure why apache closes connection even if I
> set KeepAlive
> > to On in httpd.conf.
>
> Because that's what HTTP version 1.0 says to do, and you asked
> for HTTP 1.0
> behavior.
On Thu, Jan 17, 2008 at 04:05:07PM -0600, [EMAIL PROTECTED] wrote:
> So I guess I'll define a similar acro in my code now, but it'd be nice
> if OpenSSL fixed it in the distribution so that I didn't have to work
> around it...
Ended up doing this:
#define READ_SSL_SESSION(fp,x,cb,u) (SSL_SESSIO
Got this working and thank you. Got some help from people smarter than
I, and here are the steps we took to create the keystore needed to make
this setup work. If anyone finds this thread and wants to know how it
was fixed, here are the steps we used:
1. Convert the certificate to a pkcs12 format
On Wed, Jan 16, 2008 at 07:29:45PM -0500, Victor Duchovni wrote:
> No actual problem, in ANSI C pointers can be freely converted between
> (type *) and (void *) and back.
I'd call it an actual problem when a compilation of my C++ code bombs
out because the OpenSSL header files don't compile in my
I have setup two different organizations using SSL with a CA certificate
for each organization, CA1c1 and CA2c1. Originally, they were
relatively independent and SSL was only used internally to each
organization. Now that they are collaborating more, I am having to find
a solution to setting
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hou, LiangX schrieb:
| Hi, Steve,
|I used "openssl dgst -sha1". Is there anything wrong with my code?
| Is it right to get certificate object by using "X509 *cert =
ctx->cert;" in this case?
openssl dgst -sha ... reads the data in the file and gen
On Thu, Jan 17, 2008, kris vandercapellen wrote:
> Hi,
> I have an issue altering an X509_CRL.
>
> I open a crl from file, add some changes and write the resulting crl
> somewhere.
> However the changes I've done aren't in the resulting crl.
>
> What am I missing ?
>
Well you can't just modify
Hello
> Thanks, I don't know what extensions are. I runned that command and it
shows this extensions:
>
> X509v3 extensions:
> X509v3 Basic Constraints:
> CA:FALSE
> Netscape Cert Type:
> SSL Client, S/MIME, Object Signing
>
> Now the problem is before the connection is established.
> Select is based on the file descriptor. Looks like I can't get
> the file descriptor before the connect.
> FD_SET(BIO_get_fd(conn, &c), &rfds) BIO_get_fd
> returns null. what did I do wrong?
You should not be calling 'select' until tol
On Thu, Jan 17, 2008, Yolanda Liu (liuyu) wrote:
> Hi, all:
>
> Wondering if anybody has done something related this and give me some
> suggestions.
>
> I am using OpenSsl library to do connection to a port. OpenSSL doesn't
> provide a configurable timeout for BIO_do_connect. It is relying on
Thanks, I don't know what extensions are. I runned that command and it shows
this extensions:
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
Netscape Cert Type:
SSL Client, S/MIME, Object Signing
Netscape Comment:
Hi, all:
Wondering if anybody has done something related this and give me some
suggestions.
I am using OpenSsl library to do connection to a port. OpenSSL doesn't
provide a configurable timeout for BIO_do_connect. It is relying on the
underlying OS connection. If the port is unreachable, it wi
Thanks a ton. After setting ciphers to aNULL, my program worked.
Thanks again.
- Original Message
From: "[EMAIL PROTECTED]" <[EMAIL PROTECTED]>
To: openssl-users@openssl.org
Sent: Thursday, January 17, 2008 8:47:01 PM
Subject: Re: Got error on TLSv1 handshake when server is not sending i
Hello,
> I enabled https in my website on a Tomcat server.
>
> I created with openSSL the CA, I singed my web certificate and I added
the certifie of
> my CA in IE and Firefox. With IE 6 and 7 it run successfull securely,
but with firefox
> and netscape it shows this error acceder perfectamen
Hi,
I have an issue altering an X509_CRL.
I open a crl from file, add some changes and write the resulting crl
somewhere.
However the changes I've done aren't in the resulting crl.
What am I missing ?
Thanks a lot,
Kris
#include
#include
#include
#include
#include
#include
int main(){
Hello,
> I have a written a simple client-server program in which I am trying to
communicate
> between client and server using SSL by setting peer authentication OFF
on both sides.
>
> When I don't set any certificates on server side, I am getting this
error s3_srvr.c
> (985): 41153: no shared
Hi,
I enabled https in my website on a Tomcat server.
I created with openSSL the CA, I singed my web certificate and I added the
certifie of my CA in IE and Firefox. With IE 6 and 7 it run successfull
securely, but with firefox and netscape it shows this error acceder
perfectamente a la web de f
Hi Everyone,
I have a written a simple client-server program in which I am trying to
communicate between client and server using SSL by setting peer authentication
OFF on both sides.
When I don't set any certificates on server side, I am getting this error
s3_srvr.c(985): 41153: no shared cip
Hello,
> I am new to OpenSSL. I am reading documents on SSL and started
practising.
> As an assignment, I am writing a simple client server program (to
support cross
> platform, for windows and linux).
> In my server code, sockets are created for UDP and TLS for SIP.
> My code works for window
Hello,
> I have a xml message that has the symmetric key encrypted with a public
key of the
> server, the xml is like
>
>
> gIXImWs5Es6mlErowIU/TLWmqqSCsVT+quyRb1ULza1033A7SFT
> +4RVXG00D5463QyrnGFN3zQhv
>
PgAhbODOCiwm8MXyiiRQmB2Eg3uW1vWf7DevANQ8XAXw2rW4EkDLYzRpyR+kUOnJ5XGqpGjwCE8D
> zTlCMswnY
Hi,
I'm using the following command to encrypt file.ser (serialized java file) :
openssl smime -encrypt -binary -outform PEM -in file.ser -out file.ser .
I want to override the input file. It's not working. Is it possible to do
that
(Also i need it in decryption).
Sincerly
Hi,
Could you let me know, is web-interface supported for certificate
authority (open-ssl)?. If so,let me know,how do I get that?
Desperately waiting for your response.
-Ramprasad.
Hi all,
I have a xml message that has the symmetric key encrypted with a public key of
the server, the xml is like
gIXImWs5Es6mlErowIU/TLWmqqSCsVT+quyRb1ULza1033A7SFT+4RVXG00D5463QyrnGFN3zQhv
PgAhbODOCiwm8MXyiiRQmB2Eg3uW1vWf7DevANQ8XAXw2rW4EkDLYzRpyR+kUOnJ5XGqpGjwCE8D
zTlCMswnYufhD4p7tVk
Hi,
I am new to OpenSSL. I am reading documents on SSL and started practising.
As an assignment, I am writing a simple client server program (to support
cross platform, for windows and linux).
In my server code, sockets are created for UDP and TLS for SIP.
My code works for windows, but for linux
No comments here?
Btw, this works:
$> cat openssl.c
#include
int main() {
SSL_library_init();
return 0;
}
-- Forwarded Message --
Subject: openssl-0.9.8g crashes on libcrypto(dlfcn_load)
Date: Monday 14 January 2008
From: Daniel Franke <[EMAIL PROTECTED]>
To: openssl-u
Hello everybody
I want to encrypt/decrypt data with DES3 algorithm in VB6 and VC++ ,but I
dont know how to make it.
Because I have only used exe utility until now, but I need concret function
in my source code.
Can somebody tell me what is neccessary to achieve it. What libraries will I
need ?
29 matches
Mail list logo
