step 0
Well, first off a warning (and please read this despite the
admonishing tone it might have; crypto work is playing with live guns
and if a little up-front warning can prevent you from pointing it at
your foot witthout notiing while you ask "is this the trigger, sir?" I
opt for the sermon so
This is an example of a relatively common use-case that I was alluding to in a
previous email...it would be nice to not have to figure this out either by
guessing, reverse-engineering something, or other sub-optimal form of
development strategy
Randy
On Nov 26, 2009, at 4:03 PM, John R P
Yes, I noted that usage of the APIs in combination with common use-cases is
more appropriate, but this doesn't obviate the need for per-API documentation,
as has occurred so far on the openssl website.
And I agree with the previous point that we should be trying to collectively
figure out how
From: "John R Pierce"
this task was very easy in Java, as Java's SecureSocket hides all the
complexity, up to and including full support for PKCS#11 plugins.
Weren't you lucky.
I gave up trying to do that sort of thing in Java when I ran across its
habit of doing reverse DNS lookups on eve
Is there a way to securely pass an exact key to "openssl enc"? The
"-pass" option is looking for a password that it will pass though a
key derivation function (IIUC), but I want to specify the exact binary
key to use without it being passed though a key derivation function.
The "-K" option would f
Rene Hollan wrote:
Oh, you need to dig deeper, to understand the semantics and not just
the syntax of those APIs.
I didn't say using the source as documentation was convenient, but it
is possible, to any degree of detail you want.
To wit: given the source code, it is possible to create doc
Oh, you need to dig deeper, to understand the semantics and not just the syntax
of those APIs.
I didn't say using the source as documentation was convenient, but it is
possible, to any degree of detail you want.
To wit: given the source code, it is possible to create documentation to any
degre
Finally, the source code IS the only reliable source of documentation
(assuming you can trust your compiler, OS, and hardware to do "the
right thing"). It isn't the most CONVENIENT, which is why we desire
other forms.
the implementation details of the 250-odd API entry points in libssl.so
> Finally, the source code IS the only reliable source of documentation
> (assuming you can trust your compiler, OS, and hardware to do "the right
> thing"). It isn't the most CONVENIENT, which is why we desire other forms.
>
Just to clarify...
There isn't a debate about whether "source code"
From: Jeremy Farrell
From: Chris Copeland
I am building and packaging the following on one machine
(the "build"
machine) and attemptin
From: Chris Copeland
I am building and packaging the following on one machine (the
"build"
machine) and attempting to install and use on other machines
("target"
machines) some of which have different processor
You are confusing goals and desires.
Someone who wants documentation beyond what they have can either (a) write it
themselves, (b) wait, (c) offer a bounty. (c) is the only practical choice, if
they have money but neither time, nor expertise.
Someone who wants to produce open source code to sol
On Wed November 25 2009, Krishna, Bharath wrote:
> Hi All,
>
>I am new for Unix development work.
>
>Can you please enlighten me clearly about the OPENSSL tool kit and
> how we could achieve the below requirement.
>
> Requirement:
>
> As per customer requirements we should use DES3
Chris Wilson wrote:
On Wed, 25 Nov 2009, The Doctor wrote:
I was able to see openssl.org last night MST but not at this current
time.
Works fine for me.
We did have "filesystem full" problems in the last days which led to
system panics. These issues should be sorted out now (thanks to Ralf
Hey there;
When asking for advice, please at least say whether you are trying to do
something programatically (i.e.: using the OpenSSL API), or just need to
do it from the command line.
If it is the command line, then please include what you have tried, and
the results that you got.
To this curr
That's a great idea Mark and Will, I would be happy to contribute anything
that I learn about the toolkit.
There have been a wide range of comments from people saying "look at the code"
all the way to basically suggesting an attempt
at a new version of the O'Reilly book.
I can't imagine anyo
Hi All,
I am new for Unix development work.
Can you please enlighten me clearly about the OPENSSL tool kit and
how we could achieve the below requirement.
Requirement:
As per customer requirements we should use DES3 algorithm to store
password in a file. For this, we have installed OP
Hello All,
I am building and packaging the following on one machine (the "build"
machine) and attempting to install and use on other machines ("target"
machines) some of which have different processors.
* OpenSSL 0.9.8l
* Apache 2.2.14
* Tomcat Connectors 1.2.28
The problem, as far as I can tell
IMO a wiki would be a great resource for both developers and users of
OpenSSL.
Something along the lines of the Subversion Book - an online reference
"book" for OpenSSL.
--Will
> -Original Message-
> From: owner-openssl-us...@openssl.org
> [mailto:owner-openssl-us...@openssl.org] On Beh
Gloria Lee wrote:
>
> Hi,
> I wanna ask something...
> Im trying to add crypto algorithm into Openssl,
> I heard about the engine(ccgost), and read the README.txt file, but I
> don't understand
> how to do it..
> I wonder If I add my own algorithm, Do I just copy ccgost pattern? or have
> to
Hello,
We are currently using openssl-0.9.8l and the gnu compiler on Intel CPUs. We
only use the source code from openssl and have our proprietary build system. We
are now considering switching to the Intel C compiler. Is openssl and Intel C
compiler a combination that works well, or are there
Hi,
I wanna ask something...
Im trying to add crypto algorithm into Openssl,
I heard about the engine(ccgost), and read the README.txt file, but I don't
understand
how to do it..
I wonder If I add my own algorithm, Do I just copy ccgost pattern? or have
to change
entire openssl core source??..
On Mon, Nov 23, 2009, Mathieu Malaterre wrote:
> Steve,
>
> >> Do you have a sample PBE blob you want to decrypt?
> >
> > Here is one:
> >
> > $ wget http://idisk.mac.com/dclunie-Public/securedicomfileset.tar.bz2
> > $ openssl asn1parse -in DICOMDIR -inform DER
> >
> > It was generated using Boun
On Thu, Nov 26, 2009, Loke Jun Han wrote:
>
> Hi,
>
>Is there anyway to for openSSL to automatically load a specific engine
> when the command line program is executed?
>
Yes, you specify details in the configuration file openssl.cnf, for the syntax
see:
http://www.openssl.org/docs/a
On Thu November 26 2009, Loke Jun Han wrote:
>
> Hi,
>
>Is there anyway to for openSSL to automatically load a specific engine
> when the command line program is executed?
>
Like one of the engines in the list from:
openssl engine
?
Mike
> Thanks,
>
> Jun Han
>
Hi,
Is there anyway to for openSSL to automatically load a specific engine
when the command line program is executed?
Thanks,
Jun Han
_
Windows 7: Find the right PC for you. Learn
26 matches
Mail list logo
