Re: Problem in SSL configuration

An SSLv3 certificate is an X.509v3 certificate that conforms to certain requirements. Since SSLv3 is not actually an internet standard, I would suggest looking at TLSv1 and TLSv1.1 (the latter of which is not yet supported by openssl, to my knowledge). That said, the PKI howtos at carillon.com ar

Re: Problem in SSL configuration

And you may want to take a look at: http://www.carillon.ca/library/howtos.php For the OpenSSL setup guide, which is pretty good (if I may say so myself :) tutorial for setting up an X.509 v3 certificate (which is what I'm presuming you really want when you say SSL version 3 certificated) to do ju

Re: TLSv1 problem

TLS v1 (OpenSSL 0.9.8d 28 Sep 2006 / SunOS 5.10 Generic_127127-11 sun4v sparc SUNW,Sun-Fire-T1000) and Firefox 3 [Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9) Gecko/2008052906 Firefox/3.0] both work fine for me. doki_pen wrote: -- Leonard F. Elia III, CISSP 757.864.5009 Sr. S

DH_generate_key

Hi All, I was using DH_generate_key yo generate a shared key and it works well. I had a question regarding the implementation of DH_generate_key. In my project, I cannot link to any of the default C libraries etc., so when I do DH_generate_key in my project it doesnt work, does it use some I/O (Fi

asn1 encoding routines:ASN1_get_object:too long

I'm running a qmail server on Fedora Core 6 and have the latest version of OpenSSL (in the official fc6 yum repositories) for it: [EMAIL PROTECTED] control]#* openssl version *OpenSSL 0.9.8b 04 May 2006* Since I upgraded to this newest version, no mail servers have been able to make encrypted conn

TLSv1 problem

This is on Gentoo. I'm not sure if they have patched these things * apache-2.2.9 * openssl-0.9.8h I'm having a problem using TLS with firefox3 clients. The client reports an SSL problem. I've done a pcap in wireshark. The client sends "Client Hello" with TLS 1.0. The server responds with a

Re: Information

On Fri, Jun 27, 2008 at 12:51:34PM +0200, Dario Zecchillo wrote: > Dear Openssl Support Team, This list is not a support team. It is a user list. > I need to know if the fail with a certificate verification > when the certificate is expired. There is no . OpenSSL is a toolkit for developing su

RE: Can not establish TLS connection with Client on VxWorks andServer on Linux

Hi Thanks for the reply. I was able to resolve the time issue. But now the next failure is occurring in the function "ssl3_send_client_key_exchange" in which the function RAND_Bytes is failing. Debugging it further, the function "ssleay_rand_bytes" is failing due to the line (ok = (entropy >=

Issue with Java vs. C signing

Hi, I'm new to coding encryption, so I apologize in advance if this is obvious. I am trying to create a signature in a C++ program and I need to generate the same signature as a Java program we've already coded. The Java call is like this: Cipher cipher = Cipher.getInstance("RSA/N

Re: Dev EVP Unterstand

It's working properly I execute program and output is : [EMAIL PROTECTED] Hello World! what is your problem? On Mon, Jun 30, 2008 at 4:12 PM, Vijay Kotari <[EMAIL PROTECTED]> wrote: > I not too sure about using the same context for both decryption and > encryption. It says in the man pages th

Re: [FWD] request UP UX openssl A.00.09.07l

You can use EVP_add_cipher() to add the ciphers that you would wish to allow instead of OpenSSL_add_all_ciphers(). For Eg. if you want to use only DES in ecb mode, you can do EVP_add_cipher(EVP_des_cfb()); Conversely, you can also edit the function OpenSSL_add_all_ciphers() and remove all the cip

Re: Problem in SSL configuration

hi what do u mean by 'SSL version 3 certificated'? if u r looking for ssl certificates then u need to use the openssl.exe for certs. here is the link: http://www.madboa.com/geek/openssl/#cert On Mon, Jun 30, 2008 at 10:23 AM, rajatg <[EMAIL PROTE

Re: Problem in SSL configuration

http://www.tc.umn.edu/~brams006/selfsign.html On Mon, Jun 30, 2008 at 10:23 AM, rajatg <[EMAIL PROTECTED]> wrote: > Hi, > > I am facing problem in generating SSL version 3 certificated.Could you > please help in certificate generation > > Regards, > Rajat Gupta > > ___

Re: Dev EVP Unterstand

I not too sure about using the same context for both decryption and encryption. It says in the man pages that * EVP**_**CIPHER**_**CTX**_**cleanup()* clears all information from a cipher context and free up any allocated memory associated with it. So, I think you should probably use different con

[FWD] request UP UX openssl A.00.09.07l

Forwarded to openssl-users for public discussion. Best regards, Lutz - Forwarded message from Soverini Luca <[EMAIL PROTECTED]> - Importance: normal Priority: normal From: Soverini Luca <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Date: Fri, 27 Jun 2008 15:46:56 +0200 Subject: reque

Problem in SSL configuration

Hi, I am facing problem in generating SSL version 3 certificated.Could you please help in certificate generation Regards, Rajat Gupta __ OpenSSL Project http://www.openssl.org User Support Mailing

Dev EVP Unterstand

I'm not sure, that this code is correct? thx for help code: #include #include int main(int argc, char *argv[]) { unsigned char text[]="Hello World!"; char key[]="password"; char iv[]="12345678"; unsigned char ou

Information

Dear Openssl Support Team, I need to know if the fail with a certificate verification when the certificate is expired. Thanks a lot Best regards Dario Zecchillo

Re: How-To encrypt using rsautl ??

Marek, Thanks for your reply. I think I understand. So it would go something like: To encrypt: Generate Pub/Priv RSA key Generate random AES key Encrypt file using AES key Encrypt AES key using Public RSA key (maybe append encrypted AES key in front of encrypted file to have it all in one pl