I don't know which version it supports, if psk not available in the version
which you have then downlaod patches for psk from net.
Just search "openssl-0.9.8-psk-patches.zip" in net.
Generally these patches are zip format "openssl-0.9.8-psk-patches.zip"
Unzip the patches by using the
> David Schwartz wrote:
> > Michael Sierchio:
> >> If it's your policy not to reuse keys, or allow their use beyond
> >> the lifespan of the certificate, then the enforcement mechanism
> >> for this MUST be in the CA.
> I completely disagree. If this were true, CA's would generate
> the priva
Kyle Hamilton wrote:
Certificate issuance is a statement of identity binding for a given
key at a given assurance. No more, no less.
No, it isn't. It's often more.
A CA does not and cannot specify the value of the data which can be
encrypted or protected by any given key.
Irrelevant to
On Tue, Mar 18, 2008 at 1:58 PM, Michael Sierchio <[EMAIL PROTECTED]> wrote:
> David Schwartz wrote:
> > Michael Sierchio:
> >
> >> If it's your policy not to reuse keys, or allow their use beyond
> >> the lifespan of the certificate, then the enforcement mechanism
> >> for this MUST be in the
David Schwartz wrote:
Michael Sierchio:
If it's your policy not to reuse keys, or allow their use beyond
the lifespan of the certificate, then the enforcement mechanism
for this MUST be in the CA.
I completely disagree. If this were true, CA's would generate the private key
as part of the ce
Michael Sierchio:
> If it's your policy not to reuse keys, or allow their use beyond
> the lifespan of the certificate, then the enforcement mechanism
> for this MUST be in the CA.
I completely disagree. If this were true, CA's would generate the private key
as part of the certificate issuing p
> Wow, is it possible one can't get help on this simple question??
It's entirely possible that the person who had the answer to your question
saw it and had no idea they knew the answer. Your question contains *no*
details. It would require someone to go hunting to figure out what your
proble
David Schwartz wrote:
What I think Michael Sierchio was saying, though, was something different.
He's not saying to treat a certificate as revoked, he's saying not to issue
a certificate. Basically, he's saying a CA could refuse to issue a
certificate for any key that it had ever seen before in
Okay, I'll reply to this thread when I post them on-line next week. Stay
tuned ;-)
Ger
On Tue, Mar 18, 2008 at 10:00 AM, learning openssl <
[EMAIL PROTECTED]> wrote:
> Hello Ger,
>
> Thank you so much!
> MSVC2005 project files are definetly helpful.
>
> When you are ready, please inform me.
>
And still the ASSERT kicking in, eh?
Hm, I've seen this last year with my own private builds too, but of course I
was too lazy to jot down notes then. Bummer.
This may take a while and no guarantees (paid work comes first and second
;-) ), but if you can create or have a small test app which exhi
You're teasing, right? ;-)
Ah well, let's not digress.
When you wish to port OpenSSL to an embedded system (like I've done several
years ago - a paid job which results I'm not permitted to share with you)
you should start looking at e_os.h and e_os2.h
Porting software, especially when it comes t
Hi,
I am having problem on connecting to a server running SSL.
When client send "Client Hello", the server reject with "Handshake Failure".
I think there is something wrong with Reandom.gmt_unix_time and Session
ID.
I ported SSL 0.9.8g to our platform, I might have missed something.
Could anyone
Hi!
> Andy Polyakov says it is GCC bug, but
> GCC team seems to disagree with him and didn't incorpoprate fix.
>
> Fix is available at http://www.openssl.org/~appro/values.c
> and is applicable to several sunfreeware versions and to GCC distributed
> with Solaris 10 as well. Haven't tried with rec
>
> Program received signal SIGSEGV, Segmentation fault.
> 0x0818dc55 in _init ()
> (gdb) bt
> #0 0x0818dc55 in _init ()
> #1 0x08076a16 in _start ()
>
>
> Before even reaching main? I upgraded to latest gcc on Sunfreeware in
> case that was the issue.
This problem is known for years. Probably i
Hello Ger,
Thank you so much!
MSVC2005 project files are definetly helpful.
When you are ready, please inform me.
Thanks again!
Date: Mon, 17 Mar 2008 19:40:37 +0100
From: [EMAIL PROTECTED]
To: openssl-users@openssl.org
Subject: Re: How to debug Openssl DLL
Hi,
You can use the generated DLL
Hi Ger,
Thank you for your reply. I tried with your suggestion.
The file privateKeyFile was created. The execution goes directly to else part
I also checked the folder including the application and I found the created
file privateKeyFile. The size is 0KB.
Date: Mon, 17 Mar 2008 15:37:12 +
Can something like this work as an alternative:
Imagine this conversation between consenting peers
A---> (can you shut up "B", while I grab all your data?) B
A<(OK) B
A grabs all data and then does a shutdown after caching the session to
somewhere safe
The new process can resume the session
Wow, is it possible one can't get help on this simple question??
Can't say I'm impressed with this list and the package as a whole when it
comes to the portability or documentation regarding flags and settings. If
the settings aren't handled by the config script then your on your own.
Em
Hi
The SSL_set_fd and SSL_get_fd take an int as parameter for the socket. While
this was fine on windows 32 bit and on all *nix variants (even 64 bit), this is
not fine anymore on Windows 64 bit.
I hope this can be fixed. Because a SOCKET on windows 64 bit is a UINT_PTR
which is 64 bit
navneet Upadhyay wrote:
me too
"Cancel Your Own Goddam Subscription"
- Wm. F Buckley
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users@
Hi,
You can use the generated DLL's (I assume you've used the OpenSSL provided
batchfile/makefile set) with your project by adding them to the project
dependencies.
I do not know if this also suffices for VS2005 to 'see' the related source
code (you do not 'link' source code: it's rather that the
Instructions on unsuscribing where in the welcome message from majordomo.
in short: send a message to [EMAIL PROTECTED] with thgis command on the
body:
unsubscribe openssl-users
regards
On 3/17/08, navneet Upadhyay <[EMAIL PROTECTED]> wrote:
>
> me too
>
> On 3/17/08, Pawlicki, John (NY) <[
EL HACHIMI Driss wrote:
> Hello,
>
> I have to setup an SSL communication between a client and a server. I have
> bought the OpenSSL book and I have downloaded the last OpenSSL release
> version.
> I think the first think to do is to set up my certification authority
> following these steps:
>
I've seen this in a few other circumstances too, but first let's make
absolutely sure the OS allows you to create that file: add a check for
privateKeyFile==NULL _before_ you use that FILE handle - as you should ;-)
So that would mean something along these lines (code from my head, i.e.
untested):
Hello everyone,
I need to know the content of RSA key files (private and public both).
is there any header that we write in these files?
what all parameters(n,e,d,p,q) are written in each file?
regards
vinay
Kyle Hamilton wrote:
On Sun, Mar 16, 2008 at
Since it's infeasable to store all of the possible keypairs in the
number of atoms in the universe, your assertion holds no water.
Did you do the calculation? The number of primes less than or equal
to 512 bits in length number around 10**150,
Hello i have just created a website www.petzaloud.co.uk my site is linked to
paypal and i need a public certificate. I am not sure how to get a certificate.
Paypal said to use the coomand
my-pubcert.pem:opensslreq-new-keymy-prvkey.pem-x509-days365-outmy-pubcert.pem
I really dont understand what
Hi:
My system is centos 5.0, the openssl version is openssl-0.9.8b-8.3.el5_0.2.
which is installed by yum mod_ssl.
I try to test AES_set_encrypt_key method. The sorce plaintext is
"userid=6DD024C9F68E894BEFECFE3D7A12E5BA+time=1204862415". After a
encryption and decryption process, the result tu
Hi Team,
We have upgraded our openssl from 0.9.7 to 0.9.8 version.
The OS on the system is Solaris 8.
We have complied the Apache Webserver [ 1.3.29 ] with 0.9.7, I suppose.
We have rebooted the whole Hardware server and while starting the apache, we
are getting the following error.
The sender would like to recall the message, "Reg: openSSL issue with Apache
Server".
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users@openssl.org
30 matches
Mail list logo
