> From: owner-openssl-us...@openssl.org On Behalf Of Moisés Barba
Pérez
> Sent: Monday, 02 May, 2011 06:35
> I need to create a cert with SHA1 hash. I have a problem with
> AES256-SHA because of my versión of openssl related in the bug
> https://bugzilla.redhat.com/show_bug.
> From: owner-openssl-us...@openssl.org On Behalf Of Muhammed Shafeek
> Sent: Monday, 02 May, 2011 04:48
> Hi Peter,
> Add padding for CBC mode encryption.
> Or u can use CFB mode. EVB_bf_cfb()
Unnecessary. EVP_bf_cbc (or EVP_*_cbc) already does PKCS5 padding.
(If yo
Hello group,
We're looking at using the Trousers stack for the backend of openssl in
order to :
- provide access to an RSA key stored within the TPM
- use the TPM crypto funtions
We've now discovered that the Trousers engine (libengine_tpm_openssl) does
not work with the 1.0.0 branch of op
>> If I decide to go with openssl and blowfish what are the
>> potential threats?
>
>Yes, heaps of.
>You might consider asking more detailed.
>
>> Is there another security mechanism that I can use with blowfish?
>
>Of course...
>But what exactly do you want to know? If you can use SSL
> If I decide to go with openssl and blowfish what are the
> potential threats?
Yes, heaps of.
You might consider asking more detailed.
> Is there another security mechanism that I can use with blowfish?
Of course...
But what exactly do you want to know? If you can use SSL and Blowfish?
It does
On Mon May 2 2011, derleader mail wrote:
>>> > I'm going to use stream protocol - TCP/IP. Here is the
> >> template source
> >> > code of the server without the encryption part
> >>
> >> We mean application protocol.
> >>
> >> > while (1) {
> >> > sock = accept(listensock, NULL, NULL)
>> > I'm going to use stream protocol - TCP/IP. Here is the
>> template source
>> > code of the server without the encryption part
>>
>> We mean application protocol.
>>
>> > while (1) {
>> > sock = accept(listensock, NULL, NULL);
>> > printf("client connected to child thread %i with
* owner-openssl-us...@openssl.org
> What is the purpose of the project?
>
> This is a open source project - I need a way to monitor a
> huge number of servers - monitor CPU load, RAM load, HDD
> load, installed packets and etc.
Why not using http://www.nagios.org/?
> The data which will gathe
read my post:
http://www.mail-archive.com/openssl-users@openssl.org/msg63740.html
On 11-05-02 06:50 AM, Viliam Ďurina wrote:
> Hello,
>
> I'm doing my own CA with openssl and want to regularly generate CRLs.
> We plan limited use of the CA (say 1-2 certificates per year), so the
> CA private key
Hi Akash,
-Original Message-
> From: Akash Deo
> Sent: Monday, May 02, 2011 7:19 AM
> To: openssl-usersSubject: How I can find URI for this ca certificate?
>
> Hi,
> I am trying to verify whether a ca signed certificate is revoked.
>
> Openssl verify option requires following parameters:
>
Hi Villiam,
> -Original Message-
> From: Viliam Durina
> Sent: Monday, May 02, 2011 12:50 PM
> To: openssl-users> Subject: Possibility to create CRL without the CA key
>
> Hello,
>
> I'm doing my own CA with openssl and want to regularly
> generate CRLs. We plan limited use of the CA (say
Hello,
I'm doing my own CA with openssl and want to regularly generate CRLs. We plan
limited use of the CA (say 1-2 certificates per year), so the CA private key is
stored in a safe on a USB stick until it is used next time. But, as far as I
know, we will need it to generate CRL quite often. I
Hi,
I need to create a cert with SHA1 hash. I have a problem with AES256-SHA
because of my versión of openssl related in the bug
https://bugzilla.redhat.com/show_bug.cgi?id=676384. Normally the cert is
created with TinyCA2, and I thought it was created with SHA1 but not sure.
When I exec "opens
Hi Peter,
The extra string in o/p is due to error in coding. u r passing incorrect length
in EVP_DecryptUpdate.
if (!(EVP_DecryptUpdate(&dctx, dec_outbuf, &decoutlen, enc_outbuf,
output_buf_size)))
change above line to
if (!(EVP_DecryptUpdate(&dctx, dec_outbuf, &decoutlen, enc_outbuf,
enco
>
>> On 5/1/2011 1:34 AM, derleader mail wrote:
>>
>> > I'm going to use stream protocol - TCP/IP. Here is the
>> template source
>> > code of the server without the encryption part
>>
>> We mean application protocol.
>>
>> > while (1) {
>> > sock = accept(listensock, NULL, NULL)
Hi Peter,
The extra string in o/p is due to error in coding. u r passing incorrect
length in EVP_DecryptUpdate.
if (!(EVP_DecryptUpdate(&dctx, dec_outbuf, &decoutlen, enc_outbuf,
output_buf_size)))
change above line to
if (!(EVP_DecryptUpdate(&dctx, dec_outbuf, &decoutlen, enc_outbuf,
encoutlen
>> So I need a high performance solution that can handle many connections
>> with little server load.
>>
>> 1. SSL is a good solution but is not high performance - it's more
>> suitable for encryption of a web page. When establishing connection more
>> that 100 connections are used to perf
Hi Peter,
Add padding for CBC mode encryption.
Or u can use CFB mode. EVB_bf_cfb()
-Shafeek
Hi,
Thank you for the reply. I have edit the code.
Source Code:
//gcc blowfish2.c -L/usr/local/ssl/lib/ -lssl -lcrypto -Wall
#include
#include
#include
#include
#include
#define input_
Hi Peter,
Add padding for CBC mode encryption.
Or u can use CFB mode. EVB_bf_cfb()
-Shafeek
On Sat, Apr 30, 2011 at 7:26 PM, derleader mail wrote:
> Hi,
>I have a problem with the code below. There is a bug that I can't find
> and fix.
> This is the output when I try to run it:
>
> [root@l
Hi,
I have a problem with the code below. There is a bug that I can't find and
fix.
This is the output when I try to run it:
[root@localhost test]# ./a.out sdcsdsdcd
Entering Encryption Stage:
String to encrypt: sdcsdsdcd
Encryption Successful
Entering Decryption Stage
Error Whilst Decr
20 matches
Mail list logo
