h a new CRL ?
(4) Will openssl handle CRL verification or do I do this in the
verify exit ?
(5) Does anyone have a cookbook or some code I can crib from ?
Thanks in advance for any help on this.
Gregory Nicholls.
_
Hiya,
Quick one for those in the know. Can I use both verified
certificates and anon-DH sessions with the same SSLCTX ???. I'm
guessing that I have to check the cipher whilst in the callback function
and give the green light if it's an anon-DH cipher. I'd appreciate
someone either
must be NT's bloody runtime then. If I try to fopen a NULL filename it
blows up. I changed s_server.c so
that it only calls load_dh_param() if there's a real file. Guess what. Now it works ..
. .
Thanks,
G.
Lutz Jaenicke wrote:
> On Wed, Nov 01, 2000 at 02:01:01PM -
tten
thanks,
G.
Lutz Jaenicke wrote:
> On Wed, Nov 01, 2000 at 12:22:29PM -0500, Gregory Nicholls wrote:
> > I'm trying to get s_client and s_server working with ADH - again. I _know_ I've
>had
> > it working before but I seem to have forgotten some cruci
I'm trying to get s_client and s_server working with ADH - again. I _know_ I've had
it working before but I seem to have forgotten some crucial point. I'm using
s_server -nocert -no_dhe -cipher ADH-RC4-MD5
s_client -cipher ADH-RC4-MD5
Of course it returns no shared cipher. Could some kind so
Hiya,
What version of OS/390 are you talking about ??? I'm about to start a
port of OpenSSL to OS/390 V2R8 that will run under MVS. If you want the
Unix subsystem, it's already available (I think).
G.
Simone Ventola wrote:
> Hello,
> I'm looking for a standard and free cryptographi
Hiya,
Can anyone point me towards any helpful info (apart from the standard
docs) that would be a useful
guide to porting OpenSSL ???. I'm going to attempt a port to OS/390 native
(the MVS bit, not the Unix part). If anyone has any experience and could
point me towards the major choke points
Michael Wojcik wrote:
> Hmm. Seeding PRNGs on Windows and Unix are pretty well-understood problems;
> there's Yarrow for Windows (www.counterpane.com) and egd for Unix,
Yeah but both of these are external processes. We can't (for various reasons)
rely on, or require the installation of, any su
Hiya,
Michael Wojcik wrote:
> How do you select a "random bit" of a message if you don't have a source of
> randomness in the first place? From a cryptographic perspective, you'd best
> assume an attacker knows which bit of the message you're using, even without
> knowing what the message conta
Hiya,
I've read the past items on this list, looking for a good non-interactive source of
entropy for the PRNG. Now I've a (possibly very) stupid question. The data I need to
encrypt is your basic bit of user data going from system A to system B. Now given that
the
whole point of encrypting
Ah excellent.
Thank you.
G.
Lutz Jaenicke wrote:
> On Wed, Sep 06, 2000 at 01:33:50PM -0400, Gregory Nicholls wrote:
> > I'm using ssl0.9.5a on Winnt. I ran openssl ciphers -v to look for a list that
> > would use ADH. All the ciphers came up with an a
I'm trying to work my way through the whole certificate business and
I've a small question.
How can I view/print/see the contents of a certificate request before I
sign it???
I tried the X509 -text option but it failed unless the certificate was
already signed. (said it expected a trusted cert).
Hi,
I'm writing a little program-ette using the SSL library and I'm
hoping to be able to manage both SSL connections and non-SSL connections
using BIO stuff. Now I can follow the SSL stuff (with difficulty)
however I haven't been able to figure out how to make a normal non-SSL
connection usi
Hiya,
You could wait 'till Sept 20th this year when the RSA patents expire .
. . .
G.
Gerard Monsen wrote:
> Wow. I'm at a loss here. Does anyone know of any
> way that my (tiny) company can legally use SSL for
> commercial purposes in the US without paying an obscene
> amou
"Andrew W. Gray" wrote:
> OpenSSL-0.9.5 MS Visual C++ Project files Available
> If you're not using Windows NT, 95 or 2000 you can delete this now.
>
Hiya,
Just wanted to thank you for this. I used it and it was _damn_ easy. One comment,
probably
something I screwed up but . .
The links
or process
bindings that would affect this sort of design.
Thanks in advance for any insight.
Gregory Nicholls
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
16 matches
Mail list logo
