RE: What is "Secure Renegotiation" and why is it used, and how to have the client adapt to it?

> From: owner-openssl-us...@openssl.org On Behalf Of Jeffrey Walton > Sent: Thursday, 29 November, 2012 14:57 > > I need to know, first, what "Secure Renegotiation" is, and > then, if it is a > > legitimate way to configure a secure server, why it is used. > Secure Renegotiation is a variant of

Re: What is "Secure Renegotiation" and why is it used, and how to have the client adapt to it?

> I need to know, first, what "Secure Renegotiation" is, and then, if it is a > legitimate way to configure a secure server, why it is used. Secure Renegotiation is a variant of the original negotiation supplied in SSL way back when. There were two separate issues in renegotiation. First was an aut

What is "Secure Renegotiation" and why is it used, and how to have the client adapt to it?

Please consider the following output: C:\Work>openssl s_client -connect secure.theserver.com:443 Loading 'screen' into random state - done CONNECTED(00F0) write:errno=10054 --- no peer certificate available --- No client certificate CA names sent --- SSL handshake has read 0 bytes and written

Re: How do I tell openssl where its configuration file is, without a commandline argument?

On Wed, Nov 28, 2012 at 3:54 PM, Wim Lewis wrote: > > On 28 Nov 2012, at 12:31 PM, Ted Byers wrote: >> Is it possible to tell openssl where the configuration file is, e.g. >> by setting an environment variable, without passing a commandline >> argument? > > > If I remember correctly, you can set t

Re: New features in openssl-1.0.1c

On Wed, 28 Nov 2012 23:26:35 -0500 "Dave Thompson" wrote: > > From: owner-openssl-us...@openssl.org On Behalf Of Edward Shishkin > > Sent: Monday, 26 November, 2012 13:56 > > > I'd like to use new openssl features (GCM, CMAC, etc), but have > > troubles: with standard flags (-lssl -lcrypto) comp