openssl and sha256 and bug CVE-2005-1730

2013-11-05 Thread Patetta, Nicholas
What version of openssl started supporting sha256 ? Also in what version of openssl was bug CVE-2005-1730 no longer an issue? I have version OpenSSL 0.9.7d and above. Thanks for any info. Nick Patetta

Seeding the PRNG failed

2013-11-05 Thread meetpraveenkumar
Seeding the PRNG failed I support an ETL integration platform running on AIX 6100-07-06-1241 64 Bit. We connect to SQL Server database using Data Direct SQL Server driver. The setup that we have is as below: [EJ_Voyager] QEWSD=2456231 Driver=/opt/sw/infasvp/ODBC6.0/lib/DWsqls24.so Descript

RE: Experimental multi-implementation support for FIPS capable OpenSSL

2013-11-05 Thread Vuille, Martin (Martin)
On Tue, Nov 5, 2013, Dr. Stephen Henson wrote: > On Tue, Nov 05, 2013, Vuille, Martin (Martin) wrote: > > > Hi, > > > > I have some questions about this change: > > > > > http://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=1dded7f7e8e9f7 > > 37ef9d7e3c3ef165a78fd7fa1d > > > > I am interested

Re: Experimental multi-implementation support for FIPS capable OpenSSL

2013-11-05 Thread Dr. Stephen Henson
On Tue, Nov 05, 2013, Vuille, Martin (Martin) wrote: > Hi, > > I have some questions about this change: > > http://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=1dded7f7e8e9f737ef9d7e3c3ef165a78fd7fa1d > > I am interested in using this functionality and wondering whether it would be > feasib

Re: private key in hardware ssl

2013-11-05 Thread andrew cooke
You can write your own engine that calls the routines you have. You can also write a shim library that wraps the library you have and presents it as PKCS#11. Then you can use a PKCS#11 engine. The first approach is easiest but the second gives you more options down the line (you don't need to i

private key in hardware ssl

2013-11-05 Thread 133mmx runner
Hi All, I am using openssl library. I have succeded establishing ssl connection with pfx files. But we will keep private key in hardware. Our hardware has no engine library or pkcs#11 library. There are sign and encryption functions that i can use. Is there a way in openssl to manipulate RSA oper

Experimental multi-implementation support for FIPS capable OpenSSL

2013-11-05 Thread Vuille, Martin (Martin)
Hi, I have some questions about this change: http://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=1dded7f7e8e9f737ef9d7e3c3ef165a78fd7fa1d I am interested in using this functionality and wondering whether it would be feasible and reasonably safe for me to back-port it on top of 1.0.1e? What

BitMail.sf.net v 0.6 - Secure Encrypting Email Client

2013-11-05 Thread rwest
Hello, can BitMail.sf.net as a p2p email tool for encrypted Email (and hybrid with IMAP-Email) be regarded as a reference model for research to create a secure Email Client? as it uses both, gnupg and openssl! http://bitmail.sourceforge.net/ https://sourceforge.net/projects/bitmail/files/BitMa