Hi all,
I was playing around with the 0.9.8g version (actually I am wrapping the
CLI to use with python) and I stumbled across the following:
when I do:
openssl rsa -outform NET -in test.pem -out test.net -passout pass:test
It still asks me on the command line for an password while I expected i
On Wed, Nov 12, 2008 at 10:21:43PM -0800, Michael333 wrote:
> Maybe this is well known:
> There seems to be a big mistake in the implementation of the des-cbc mode in
> openssl.
There is a big mistake in your choice of keys, ...
http://en.wikipedia.org/wiki/Weak_key
It is unwise to jump to
John Nagle schrieb:
Question: Is a certificate for "*.example.com" considered valid for
"example.com"?
OpenSSL seems to say no, but Firefox 2 says yes. Try
"https://stanford.edu"; for a test.
IIRC OpenSSL does not accept wildcards at all in s_client. The library
itself does not make any decis
Hodie pr. Id. Nov. MMVIII est, John Nagle scripsit:
> Question: Is a certificate for "*.example.com" considered valid for
> "example.com"?
No. "*.example.com" could at most be reduced to ".example.com", but
the first "." can't be suppressed.
> OpenSSL seems to say no, but Firefox 2 says yes. Tr
Hi all,
First of all a big thanks to Ger Hobbelt for the clues as to why my
last problem was happening.
I currently have a different problem that is stumping me. I think that
maybe I have a gap in my knowledge that maybe someone can fill.
I have a problem validating a connection. The sequence o
Hi!
> One thing I have been having difficulty finding is how to import more
> than one certificate into a PKCS keystore. The JKS supports multiple
> certificates and I assume that PKCS must as well I just haven't been
> able to find out how to add another key to the keystore.
I ran into the prob
I will be out of the office starting 11/13/2008 and will not return until
11/20/2008.
I will respond to your message when I return. If you require immediate
assistance, please contact the Campus Help Desk at [EMAIL PROTECTED]
Hi All,
I am using this function to create a key for password encryption.
I have a similar application running on Windows which uses
Rfc2898DeriveBytes class to generate the key.
The problem I am facing here is the difference between the keys generated
using Windows and OpenSSL.
It happens only wh
Hi all,
I am getting this error message while i am trying to install a software. Its a
storage mangament software in SLES10_x64 machine
"Error in SSL connection, program will exit now"
for wat possible reason wil i get this error?
please help me this.
Regards,
Nithesh Gangadhar
Maybe this is well known:
There seems to be a big mistake in the implementation of the des-cbc mode in
openssl.
Read and repeat the following short experiment! Any comments?
_
start with a file containing 32 zero-bytes, corresponding to 4
DES-input-blocks:
sh-3.00$ xxd 4zeroblocks
00
Question: Is a certificate for "*.example.com" considered valid for
"example.com"?
OpenSSL seems to say no, but Firefox 2 says yes. Try
"https://stanford.edu"; for a test.
RFC 2459 doesn't discuss wildcards. I haven't paid
73 CHF to access the X.509 standard at
"http://www.itu.int/rec/T-REC-
Hi,
I was hoping someone could enlighten me a little bit about the
different between the two keystores. In my specific case I am
interested in certificates for use with tomcat. Tomcat is a java
application but it can use either keystore format.
One thing I have been having difficulty finding is
Sascha Kiefer wrote:
Is this a point of weakness? How do you feel about it? Let's discuss.
Yes, trusted CAs are the points of weakness. Because in real life all
trusts are points of weakness in one way or another.
Cheers.
VV
___
Hi,
I see the following error while trying to verify the signature using public
key (generated in cygwin) and verification is done at embedded system with
openssl libraries.
error:04077077:rsa routines:RSA_verify:wrong signature length
The details about what I'm trying to do is as follows:
* Pr
14 matches
Mail list logo
