So, I hope that I will get sufficient information from you on how to
integrate OpenSSL into my Java application.
You might find it a lot easier if you were to use Bouncy Castle.
http://www.bouncycastle.org/
Taken from Gentoo Linux, please apply.
--
Hanno Böck Blog: http://www.hboeck.de/
GPG: 3DBD3B20 Jabber/Mail:[EMAIL PROTECTED]
respect $MAKE if it is set in the environment so we don't get a mix
of the host `make` and whatever $MAKE is set to when recursing
htt
This patch allows the Configure script to detect the ar and cc command via
environment variables. Taken from Gentoo package.
Please apply.
--
Hanno Böck Blog: http://www.hboeck.de/
GPG: 3DBD3B20 Jabber/Mail:[EMAIL PROTECTED]
--- Configure
+++ Configure
@@ -9
Hi, Khoo Wei Hiong,
What are you trying to do exactly?
If you're doing password-based encryption/decryption with symmetric
keys (e.g. AES, 3DES with "openssl enc" on command-line), then the
not-yet-commons-ssl java library will help you interop with OpenSSL:
http://juliusdavies.ca/commons-ssl/
Thanks Jean-Marc.
Do you think that because my OpenSSL app uses AES-256 for the cipher that
that could be the problem?
Joe
Joe Flowers wrote:
[...]
I can decrypt the HTTPS traffic OK [...] where the HTTPS
traffic is initiated from a web browser (IE) on the client machine.
BUT, when I try my HTTPS client application (on the client machine,
talking to the server machine), the application seems to work correctly
other
Hello everyone,
Does anyone have ideas on how I can get Wireshark to decrypt my OpenSSL
HTTPS client application data?
I can decrypt the HTTPS traffic OK to the server machine from the client
machine with Wireshark installed on the client machine, where the HTTPS
traffic is initiated from a web b
> The problem is that SSL_write() sometimes returns SSL_ERROR_SSL with
> errno equal to EAGAIN. Calling SSL_write() again seems to solve the
> problem. I have the impression that SSL_write() should return
> SSL_ERROR_WANT_WRITE in this situation.
> * the underlying socket is blocking
It sounds l
http://noc.kpnw.org/~scott/
http://www.bpsinfo.com/javassl/
http://sponsor.iti.informatik.tu-darmstadt.de/itissl/
Hi all,
I'm seeing weird OpenSSL behaviour and I suspect it's a bug in the library.
The problem is that SSL_write() sometimes returns SSL_ERROR_SSL with
errno equal to EAGAIN. Calling SSL_write() again seems to solve the
problem. I have the impression that SSL_write() should return
SSL_ERROR_WAN
Hi,
There is no way to bypass or override the passphrase associated with your
SSL key. The key is encrypted and only the right passphrase can decrypt it
to be usable by Apache. If you don't have this passphrase, you should
start thinking about generating a new key and acquiring a new SSL
certifica
Hello,
[EMAIL PROTECTED] wrote on 05/30/2008 12:34:15 PM:
> Hello,
> i have created the following code to test the use of RSA (signautre):
>
> #include
> #include
> #include
> #include
> #include
> #include
> #include
> #include
> #include
> #include
> #include
>
> main ()
> {
>
> l
Yves Rutschle wrote:
On Wed, May 28, 2008 at 07:55:35PM +1200, Deane Sloan wrote:
Finally - how real is this concern? What is the probability that say a
2048bit generated key could fall into the 32,767 keys in the metasploit
SSH example on unaffected systems?
32,768 = 2^15
number of 2048 bit
If you don't know the passphrase, you must generate a new keypair, and
get that public key certified into a new certificate. (For more
information, including the appropriate commands, please refer to the
FAQ on openssl.org and any special instructions provided by your CA.)
Apache will use Private
This is my first time to use OpenSSL. I have wrote once to ask for help but
no reply. I would like to write OpenSSL-enabled code in my Java application,
but I have no idea where to start from. What I have explored is that OpenSSL
is meant for C or I might be wrong.
So, I hope that I will get suff
Hi there,
Im trying to update an SSL certificate on our server (CentOS) but its
asking for a pass phrase for the server before I can restart httpd and
apache. The guys that created the current expired certificate don't work
here anymore.
How can I overwrite the pass phrase? How do I know w
I'd like confirmation that I understand how to free RSA keys.
I create an RSA *key. I then use it to create an EVP_PKEY
using EVP_PKEY_new() and EVP_PKEY_assign_RSA().
Later, want to free everything.
I _think_ that EVP_PKEY_free() will free both the EVP_PKEY and the
RSA objects. Is that correc
Greetings,
I am receiving the following errors when attempting to install
OpenSSL-0.9.8h on SuSE Linux Enterprise 9. However, there was no
issue with "make" and "make test". Please advise,
Thanks,
-Eric ;.,
SSL.3 => ssl.3
making install in crypto...
make[1]: Entering directory `/usr/loca
Look at this book:
Network Security With OpenSSL
Hi,
I'm wondering about integrating fips into openssl-0.9.8g. We were previously
using openssl-0.9.7m, and have noted that the fips1.0 directory is absent in
the 0.9.8g release, and also that the "./Configure" script does not contain any
of the fips functionality.
I did note in some of the
Subject says it: What a good approach to debugging a segfault
in i2d_X509()?
The X509 certificate succeeds when I use X509_sign(). But
when I sign "by hand", adding the two signature algorithms,
signing with RSA_Sign(), and adding the signature to
the structure, X509_print_fp() segfaults.
The X
Hi
I am looking for the patches for the recently announced security
vulnerabilities(CVE-2008-0891 and CVE-2008-1672) in version 0.9.8f of Openssl.
Please let me know if the patches are available in the Openssl site or from
Openssl.
Thanks & Regards
Harini
On Thu, May 29, 2008 at 10:14:12AM -0400, Victor Duchovni wrote:
> And then knowing that attackers never choose these keys, users start
> using these keys because attakers avoid them, and then attackers start
> checking these first again, ... This way lies madness. Fix your premise
> and don't chan
Hello,
i have created the following code to test the use of RSA (signautre):
*#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
#include
main ()
{
long erreur = 0;
char *message="vatos locos para siempre";
char *encrypt, *decrypt, *sign,
hash[SH
I am new to openssl. Now I am writing a simple server and client simulators
using Java. I would like to know:
1. what are the files that i need to have, in order to use OpenSSL toolkit from
my java application?
2. After getting those files, which file i need to access in order to use
the methods
* John Parker wrote on Sat, May 31, 2008 at 15:35 -0500:
> > Probability that a "proper" key falls in the space of the
> > "bad debian" keys: 2^15 / 2^2048 = 1 / 2^2033.
> >
> > That's a lot of zeros before the first non-zero digit.
>
> Put differently, if you were to start generating keys now at
* [EMAIL PROTECTED] wrote on Fri, May 30, 2008 at 06:51 -0500:
> Back in the day, DES was the de facto encryption algorithm.
[...]
> In an ideal world, I think the system should throw an exception
> then and let the calling application feed it another key.
> However, I think the general consensus
Hi
Just got a tutorial and started to write some basic code, will test
tomorrow and if it works then will continue with certificates but don't
understand too much.
I have implemented the urgent code in PHP and it is working, but still
want to do it in C++ with my own program, have tested it right
28 matches
Mail list logo
