> From: owner-openssl-us...@openssl.org On Behalf Of sandeep kiran p
> Sent: Saturday, 17 October, 2009 02:12
> Can someone point me to the instructions that are needed to build
> and debug OpenSSL using Visual Studio on windows? I want to navigate
> through the code for the 'o
Deepak Mundra wrote:
> I have written a server client application in which im using self signed
ssl
> certificates .. How can i make sure that only known clients can connect to
my
> server using ssl connection?
Simply define *precisely* what you mean by "known clients" and test for
that. If a co
> From: owner-openssl-us...@openssl.org Dr. Stephen Henson
> Sent: Tuesday, 20 October, 2009 09:15
> On Tue, Oct 20, 2009, Daniel Marschall wrote:
> > 18758:error:02006062:system library:bind:Address already in
> > use:b_sock.c:685:port=''
> > 18758:error:20069075:BIO
> routines:BIO_get_acce
> From: owner-openssl-us...@openssl.org On Behalf Of swapnil kamble
> Sent: Tuesday, 20 October, 2009 05:47
(This is almost certainly a -users questions, not -dev.)
> I want SSL client server communication between OpenSSL Server
with Java Client.
> My
Hi Doug,
> I am trying to figure out where the padding bits
> are applied?
> ...
> The two private keys are described in a different
> number of bytes. Since the 2nd generated private
> key is shown in 20 bytes i.e. 160 bits, is it assumed
> that the MS 3 bits are 0?
The public key, also known as
Hello Steve.
Dr. Stephen Henson schrieb:
On Tue, Oct 20, 2009, Daniel Marschall wrote:
Hello.
I am trying to set up an ocsp server.
I have following line:
openssl ocsp -index codesign_intermediate/index.txt -url
http://www.myhost.com:/codesign/ -rsigner root_ca/certs/cacert.crt
-rkey
I have been trying to generate keys for a ECDSA system that uses a sect163k1 key
pair.
In generating some of the key sets, I notice that the printed length of the keys
differ when using the -text command option. Since openssl is displaying a 163
bits in a byte-wise display, I am trying to figure
On Tue, Oct 20, 2009 at 05:46:56PM +0200, Peter Sylvester wrote:
>
>> It does not support subjectAltName extensions.
> SubjectAltName extension is supported since an eternity,
> more than 5 years ???
Oops, sorry, you are right, I failed to notice the code that does this
just above the CN code. So
It does not support subjectAltName extensions.
SubjectAltName extension is supported since an eternity,
more than 5 years ???
__
OpenSSL Project http://www.openssl.org
User Support Mailing Li
On Tue, Oct 20, 2009 at 10:11:46AM +0200, Peter Sylvester wrote:
>
> A better question is to match a given hostname
> against a certificate and determine whether it
> obeys the https rules.
> There can be multiple hostnames and wild cards.
>
> The code implemented by "curl" is a complete way to do
Hello.
I am trying to set up an ocsp server.
I have following line:
openssl ocsp -index codesign_intermediate/index.txt -url
http://www.myhost.com:/codesign/ -rsigner root_ca/certs/cacert.crt -rkey
root_ca/private/privkey.pem -CA root_ca/certs/cacert.crt -text -out
codesign_intermediate/ocsp
On Tue, Oct 20, 2009, Daniel Marschall wrote:
> Hello.
>
> I am trying to set up an ocsp server.
>
> I have following line:
>
> openssl ocsp -index codesign_intermediate/index.txt -url
> http://www.myhost.com:/codesign/ -rsigner root_ca/certs/cacert.crt
> -rkey root_ca/private/privkey.pem -
Hello.
I am trying to set up an ocsp server.
I have following line:
openssl ocsp -index codesign_intermediate/index.txt -url
http://www.myhost.com:/codesign/ -rsigner root_ca/certs/cacert.crt
-rkey root_ca/private/privkey.pem -CA root_ca/certs/cacert.crt -text
-out codesign_intermediate/ocsp
Have you looked at stunnel with verify options 2 or 3?
Carter
Carter Browne
CBCS
cbro...@cbcs-usa.com
781-721-2890
Deepak Mundra wrote:
> Dear All,
>
>
>I have written a server client application in which im using
> self signed ssl certificates .. How can i make sure that only known
>
On 2009.10.20 at 16:50:59 +0530, Deepak Mundra wrote:
>Dear All,
>
>══ I have written a server client application in which im using self
>signed ssl certificates .. How can i make sure that only known clients can
>connect to my server using ssl connection?
There is three answ
On 2009.10.20 at 10:11:46 +0200, Peter Sylvester wrote:
>
> A better question is to match a given hostname
> against a certificate and determine whether it
> obeys the https rules.
> There can be multiple hostnames and wild cards.
>
> The code implemented by "curl" is a complete way to do this.
H
Dear All,
I have written a server client application in which im using self
signed ssl certificates .. How can i make sure that only known clients can
connect to my server using ssl connection?
im creating certificates as below
Server Side:
===
Server Side
--
(pas
Hi,
I want SSL client server communication between OpenSSL Server with Java
Client.
My OpenSSL Server with OpenSSL Client works, Java Server with Java Client
works.
But OpenSSL Server with Java Client fails in SSL_accept().gives
SSL_ERROR_SSL.
I have first created a plain TCP socket, and after
Hi,
I want SSL client server communication between OpenSSL Server with Java
Client.
My OpenSSL Server with OpenSSL Client works, Java Server with Java Client
works.
But OpenSSL Server with Java Client fails in SSL_accept().gives
SSL_ERROR_SSL.
I have first created a plain TCP socket, and after
A better question is to match a given hostname
against a certificate and determine whether it
obeys the https rules.
There can be multiple hostnames and wild cards.
The code implemented by "curl" is a complete way to do this.
/PS
___
20 matches
Mail list logo
