Re: Unable to load certificate!!

On Mon, Sep 8, 2008 at 10:31 PM, Shivakumar Balur <[EMAIL PROTECTED]> wrote: > openssl x509 -in req.der -noout -text > > got error: > > unable to load certificate > > 29221:error:0906D06C:PEM routines:PEM_read_bio:no start > line:pedm_lib.c:647:Expecting: TRUSTED CERTIFICATE openssl x509 -inform D

Unable to load certificate!!

Hi All, I created two certificate mycert.pem & newcert.pem with providing some information, using command: openssl req \ -x509 -nodes -days 365 \ -newkey rsa:1024 -keyout mycert.pem -out mycert.pem openssl req \ -x509 -nodes -days 365 \ -newkey rsa:1024 -keyout newcert.pem -out ne

Re: MD5 checksum of a file from C

Marco Sommella wrote: > plz someone can tell me how make a md5 checksum of a file from a c program ? You didn't specify what operating system you're using so I will assume that its a unix-like OS like Linux. In that case, the popen() could be used to run the command line md5sum program against y

Re: Need assistance with certificates and Watchguard product-LONGSHOT

I suspect they won't know. This information was only obtained after they examined a certificate created in what they consider the "normal" means: by using their CA that comes with a Windows application they sell. It's basically just a MS CA. All of this was discovered when I complained LOUDLY th

Re: Need assistance with certificates and Watchguard product-LONGSHOT

Because your vendor doesn't follow the latest ipsec specification, which states that only keyUsage nonRepudiation,digitalSignature should be required, and no extendedKeyUsage should be required. However, looking at http://www.oid-info.com/cgi-bin/display?tree=1.3.6.1.5.5.8.2 says that 1.3.6.1.5.5.

Re: Need assistance with certificates and Watchguard product-LONGSHOT

Here's what I had to add to the config to get it to work (as listed by the vendor): [ new_oids ] pkixeku=1.3.6.1.5.5.8.2 ikeIntermediate=${pkixeku}.2 [ usr_cert ] keyUsage = nonRepudiation, digitalSignature, keyEncipherment extendedKeyUsage = serverAuth,clientAuth,ikeIntermediate Any thoughts on

RE: How to disable DNS certificate check?

> Hello, > > I'm using an application (that I could recompile) which is using > OpenSSL. My > problem is that for some computers I have an internet access but no DNS > server. In this case I configure the application to connect to > https://xxx.xxx.xxx.xxx (ip address) instead of https://www.myDom

MD5 checksum of a file from C

Hi, plz someone can tell me how make a md5 checksum of a file from a c program ? I need to create a program which check md5 of another program, if checksum match with one memorized the program will be exec. TNX _ Marco Sommella [EMAIL PROTECTED] (E-mail &

Re: How to disable DNS certificate check?

philipina wrote: > Hello, > > I'm using an application (that I could recompile) which is using OpenSSL. My > problem is that for some computers I have an internet access but no DNS > server. In this case I configure the application to connect to > https://xxx.xxx.xxx.xxx (ip address) instead of htt

Received error 127 when installing Openssl

Hello, I am trying to upgrade openssl to latest version of 9.8h on a red hat Linux fedora core 6.0. Every time that I try to run the test or make test step of the install, I received error 127 " gcc command not found", and "crypto error 1" Not sure why I am getting this errors and how to fix the

Re: The Authority Key ID extension

Silviu VLASCEANU wrote: Hi, Sorry to bother again, but I still haven't found how to add the Authority Key ID to a certificate, using openssl. Please, I need some help with this. The details are below. Thank you in advance, -- Silviu 2008/9/3 Silviu VLASCEANU <[EMAIL PROTECTED]

Re: OpenSSL executable for Windows 2003 (32 bit)

Earhart, Darrel wrote: Hello, We are trying to mass install the Win32OpenSSL-0_9_8g.exe OpenSSL program on 3000+ Windows 2003 server systems across multiple datacenters using a combination of SMS and group policy. The problem is that SMS/group policy launches a cmd.exe process to kick off the in

Re: The Authority Key ID extension

On Mon, Sep 08, 2008, Silviu VLASCEANU wrote: > Hi, > > Sorry to bother again, but I still haven't found how to add the Authority > Key ID to a certificate, using openssl. > Please, I need some help with this. The details are below. > Two ways, one is manually the other using the extension conf

Re: SSL_session_reused api

Krishna M Singh wrote: > Hi All > > I have been using this API to dump in my statistics logs whether the > SSL session is reused or not in a windows openSSL based client. > Everything was good till i was using 9.7e. The session reuse works > fine and the logs were correctly showing session r

Re: Regarding DES_xwhite_in2out() API

Kundile, Gayathri wrote: > HI all, > > > > Anybody tell me about when we upgrading the openssl version from 0-9.8.g > to openssl-0.9.8h, > > how the applications will affect which are using DES_xwhite_in2out() API The application will fail to link with an unresolved reference. This will however

Regarding DES_xwhite_in2out() API

HI all, Anybody tell me about when we upgrading the openssl version from 0-9.8.g to openssl-0.9.8h, how the applications will affect which are using DES_xwhite_in2out() API __ OpenSSL Project h

The Authority Key ID extension

Hi, Sorry to bother again, but I still haven't found how to add the Authority Key ID to a certificate, using openssl. Please, I need some help with this. The details are below. Thank you in advance, -- Silviu 2008/9/3 Silviu VLASCEANU <[EMAIL PROTECTED]> > Hello everybody, > > I need to copy t

How to disable DNS certificate check?

Hello, I'm using an application (that I could recompile) which is using OpenSSL. My problem is that for some computers I have an internet access but no DNS server. In this case I configure the application to connect to https://xxx.xxx.xxx.xxx (ip address) instead of https://www.myDomaine.net The

OpenSSL executable for Windows 2003 (32 bit)

Hello, We are trying to mass install the Win32OpenSSL-0_9_8g.exe OpenSSL program on 3000+ Windows 2003 server systems across multiple datacenters using a combination of SMS and group policy. The problem is that SMS/group policy launches a cmd.exe process to kick off the install argument (c:\temp>W