Hi experts,
I am using the demo files: openssl-0.9.8j/demos/ssl/cli.cpp and serv.cpp
(attached)
Console output from server
[swu...@mpvmpc19 ssl]$ ./serv.out
> Enter PEM pass phrase:
> Connection from 17f, port c587
> SSL connection using DES-CBC3-MD5
> *Client does not have certificate.*
> G
On Thu, May 14, 2009, Lasse Kliemann wrote:
> Assume that I sign a document's digest with 'openssl dgst -sign
> ...' and distribute the document with the signature. How can I
> help recipients to find a corresponding certificate (i.e., one
> that contains a public key to successfully verify the
...and don't forget to read the Apache documentation on mod_ssl.
http://docs.apache.org/ is your friend.
-Kyle H
On Thu, May 14, 2009 at 2:37 PM, Ger Hobbelt wrote:
> On Thu, May 14, 2009 at 3:17 PM, Neerav Singh
> wrote:
>> Hi Ger
>>
>> Thanks a lot for the invaluable information, I opened my
On Thu, May 14, 2009 at 3:17 PM, Neerav Singh
wrote:
> Hi Ger
>
> Thanks a lot for the invaluable information, I opened my mind I had to read
> a lot in order to get what you were suggesting, but worthwhile!!
>
>
>
> I tried a lot by setting different CFLAGS, got in the code, tried to find
> some
By spanning you mean 'directed-to'?
Be sure to select the right interface when capturing packets.
J-
On 5/14/09, Manam Rajasekhar wrote:
>
> Hello Experts,
>
> I am spanning traffic going through router to Linux PC. I am running
> "ssldump" to get the ssl connection information.
>
> ssldump is
Kyle Hamilton,
>./configure no-asm
>
>The asm for sha512 requires SSE2, if I remember correctly.
Thank you, you remembered correctly !
It is working now :)
- Jørgen Thomsen
Til uvedkommende, der læser med: Der er ingen grund til at læse min mail.
Jeg har intet at gøre med FARC, al-Jihad, al-Qa
> > I have an ssl server. Really simple;
> >
> > // init
> > SSL_library_init();
> > SSL_load_error_strings();
> > bio_err = BIO_new_fp(stderr, BIO_NOCLOSE);
> > meth = SSLv23_server_method();
> > ctx = SSL_CTX_new(meth);
> > SSL_CTX_use_certific
* Message by -Lasse Kliemann- from Thu 2009-05-14:
> I thought that maybe including the certificate _fingerprint_
> would be a good idea, when using OpenSSL. Then, recipients can
> sort their trusted certificates by fingerprint. However, it
> appears to be common practice to sort certificates b
Assume that I sign a document's digest with 'openssl dgst -sign
...' and distribute the document with the signature. How can I
help recipients to find a corresponding certificate (i.e., one
that contains a public key to successfully verify the signature
and usually which also contains some iden
Hey,
Info: Windows Vista Ultimate, Cygwin 1.7, OpenSSL 0.9.8k and
1.0.0-beta2 (I've tried both)
I've been trying to install openssl with no success. When I run
"./config", everything is fine, but when I try to do "make" or
"make test", I get this error:
..."${APPNAME:=rc5test.exe} rc5test.o ${LI
Hello Experts,
I am spanning traffic going through router to Linux PC. I am running "ssldump"
to get the ssl connection information.
ssldump is not working when the traffic is spanned to the ethernet interface of
the PC but it works when i initiate connection from the PC itself.
Is there a s
./configure no-asm
The asm for sha512 requires SSE2, if I remember correctly.
-Kyle H
On Thu, May 14, 2009 at 9:44 AM, J. Thomsen wrote:
>
> FreeBSD 4.7-SECURITY #0: Wed Mar 17 03:57:29 GMT 2004 i386
>
> How can this be fixed ?
>
> ./configure
> make
> make test
>
>
> Testing SHA-256 ... passe
If you expect no more data from the client, you can simply destroy the
SSL context at the point you first call it (even if it returns 0). It
will only return 1 if it has received the peer's close_notify, and
it's possible that those peers failed to send it. (Do you get an
SSL_ERROR_SYSCALL with E
Hi, we are trying to track down a memory leak that occurs when we run
secure comms using the OpenSSL library. Now we've had this before where
we thought it was the library but I tracked it down to us not using the
word virtual on our base class' destructor, so I'm not about to start
blaming OpenSS
FreeBSD 4.7-SECURITY #0: Wed Mar 17 03:57:29 GMT 2004 i386
How can this be fixed ?
./configure
make
make test
Testing SHA-256 ... passed.
Testing SHA-224 ... passed.
../util/shlib_wrap.sh ./sha512t
*** Signal 4
Stop in .../openssl-0.9.8k/test.
*** Error code 1
No compilation errors and dro
Hi Ger
Thanks a lot for the invaluable information, I opened my mind I had to
read a lot in order to get what you were suggesting, but worthwhile!!
I tried a lot by setting different CFLAGS, got in the code, tried to
find some error, in the make file but with no help, everything was
pointing to t
On Wed, May 13, 2009, Folkert van Heusden wrote:
> Hi,
>
> I have an ssl server. Really simple;
>
> // init
> SSL_library_init();
> SSL_load_error_strings();
> bio_err = BIO_new_fp(stderr, BIO_NOCLOSE);
> meth = SSLv23_server_method();
> ctx = SSL_CT
SSL_CTX_set_cipher_list(ctx, "STRONG:HIGH:FIPS:@STRENGTH");
-Kyle H
On Thu, May 14, 2009 at 5:46 AM, Folkert van Heusden
wrote:
> Ok I added debugging code and it gives me this;
>
> 27559:error:1408A0C1:SSL routines:SSL3_GET_CLIENT_HELLO:no shared
> cipher:s3_srvr.c:1006:
>
> What does that mea
Ok I added debugging code and it gives me this;
27559:error:1408A0C1:SSL routines:SSL3_GET_CLIENT_HELLO:no shared
cipher:s3_srvr.c:1006:
What does that mean from a configuration point of view? I have the default
openssl package installed and also the cacert.org.pem-file in the correct place.
O
ssldump gives me the following information:
belle:/home/folkert# ssldump -a -A -H -k Personal/src/https2http/key.pem -i lo
New TCP connection #1: localhost(33455) <-> localhost(996)
1 1 0.0001 (0.0001) C>S SSLv2 compatible client hello
Version 3.1
cipher suites
Unknown value 0x39
Unknown
20 matches
Mail list logo
