corresponding to the private
key on the card?
So far I am using 'openssl x509' together with generate a certificate
requestjust commented out the error handling in ca.c. But this is just a hack
and I wonder whether there is a clean way to do this.
- --
Heiko Nardmann (Dipl.-Ing
I would like to access the OpenSSL API from within PHP code.
Are there any PHP classes already existing for this?
--
Heiko Nardmann (Dipl.-Ing.), [EMAIL PROTECTED], Software Development
secunet Security Networks AG - Sicherheit in Netzwerken
(www.secunet.de),
Weidenauer Str. 223-225, D-57076
for more info.
> __
> OpenSSL Project http://www.openssl.org
> User Support Mailing List[EMAIL PROTECTED]
> Automated List Manager [EMAIL
oes anyone know of any free (beer or speech) OCSP
> slim> implementations for Linux or AIX?
>
> I'm finishing up a patch kit for OpenSSL. Stay tuned, I plan to have
> it ready by the end of this week at the latest.
>
--
Heiko Nardmann (Dipl.-Ing.), [EMAIL PROTECTED], Softw
default caching inside SSLeay does somewhere exists a
reference
implementation for it?
--
Heiko Nardmann (Dipl.-Ing.), [EMAIL PROTECTED], Software Development
secunet Security Networks AG - Sicherheit in Netzwerken
(www.secunet.de),
Weidenauer Str. 223-225, D-57076 Siegen
Tel. : +49 271 48950-13, Fax
P/1.0
>
> (including 2* CRLF) I can do this interactively but would like to automate
> the procedure.
> Eg
> openssl s_client -connect some.web.server:443 < httpRequestFile
>
> Questions I have are:
> 1. Is what I'm trying to do reasonable?
> 2. Can the effect be ac
No, don't hit me!!!
Another one asking for this annoying topic ...
Does anyone know whether SSLeay has any Y2K problems?
--
Ciao ... Heiko Nardmann (Dipl.-Ing.), Software Development
secunet (www.secunet.de), Security Networks GmbH - Sicherheit in
Netzwerken
Weidenauer Str. 223-225, D-
'make tests' runs fine on the machine here.
--
Ciao ... Heiko Nardmann (Dipl.-Ing.), Software Development
secunet (www.secunet.de), Security Networks GmbH - Sicherheit in
Netzwerken
Weidenauer Str. 223-225, D-57076 Siegen
Tel. : +49 271 48950-13, Fax : +49 27
DIR)/test2.o
This is a different approach which seems to work only with gmake.
So the Apache approach (shadow tree + generic Makefile which calls
the real Makefile) is the better one.
--
Ciao ... Heiko Nardmann (Dipl.-Ing.), Software Development
secunet (www.secunet.de), Security Networks GmbH -
t;
We used this interface to integrate our SETCOS Cards with B1 reader into
Netscape.
Integrating it into SSLeay was a bit more complicated since many
functions
assume to have the key in memory (accessing RSA parameters e.g.).
--
Ciao ... Heiko Nardmann (Dipl.-Ing.)
Software Development, secunet
e 0 if ssl3_output_cert_chain() had problems.
1717 s->init_off=0;
1718 }
1719
1720 /* SSL3_ST_SW_CERT_B */
1721 return(ssl3_do_write(s,SSL3_RT_HANDSHAKE));
1722 }
Can someone confirm that this does not raise problems?
--
Ciao ... Heiko
Oops ... in my last patch there is still the '11' which
is only there due to the misunderstanding (11h = 17d).
So here are the patched patches.
--
Ciao ... Heiko Nardmann (Dipl.-Ing.)
Software Development, secunet (www.secunet.de)
Security Networks GmbH, Weidenauer Str. 223-225, D-57
he patch.
Just another question (programming aspect):
why are these types always C-int and not an enum?
Using enums instead of int gives the possibility to let the
compiler do some typechecking.
--
Ciao ... Heiko Nardmann (Dipl.-Ing.)
Software Development, secunet (www.secunet.de)
Security Networks
Oops up ...
I missed that the 11 is hex and therefore decimal 17 which is ok
according to the TeleTrusT document.
So here is the patch for 19990218 snapshot if someone wants to
integrate those OIDs.
--
Ciao ... Heiko Nardmann (Dipl.-Ing.)
Software Development, secunet (www.secunet.de
en?
Noch ein Hinweis in eigener Sache am Rande:
sollten Sie Interesse an Chipkarten-gestuetzter Verschluesselung,
Signatur oder Authentisierung haben (auch im Apache Kontext),
so koennen wir Ihnen auch weiter helfen, da wir im Rahmen eines
Projektes fuer einen anderen Kunden eine Integration von Chipkarten
in d
Erwann ABALEA wrote:
>
> On Thu, 18 Feb 1999, Heiko Nardmann wrote:
>
> > In the 19990217 snapshot the Configure script has
> > the path to perl hard coded to /usr/local/bin/perl.
> > Since I have perl located at a different location
> > this does not work
ry and Practice"
Douglas R. Stinson, 1995
CRC Press
ISBN 0-8493-8521-0
If you have a university in the neighbourhood
have a look at it if it is what you need/want.
--
Ciao ... Heiko Nardmann (Dipl.-Ing.)
Software Development, secunet (www.secunet.de)
Security Networks GmbH, Weidenauer Str. 223
tor of the
certificate and come back if I know more about this value.
The document I found talks about the values 2, 3, 5, 7, 9, 17
possible for this oid part.
--
Ciao ... Heiko Nardmann (Dipl.-Ing.)
Software Development, secunet (www.secunet.de)
Security Networks GmbH, Weidenauer Str. 223-225, D-57076
macros
to circumvent these problems.
--
Ciao ... Heiko Nardmann (Dipl.-Ing.)
Software Development, secunet (www.secunet.de)
Security Networks GmbH, Weidenauer Str. 223-225, D-57076 Siegen
Tel. : +49 271 48950-13 Fax : +49 271 48950-50
roduced by the macro M_ASN1_D2I_vars() which
is missing in both the SSLeay version and the CVS version of
the function ASN1_TYPE_new() in a_type.c.
Is code missing here or do I miss something?
--
Ciao ... Heiko Nardmann (Dipl.-Ing.)
Software Development, secunet (www.secunet.de)
Security Networks GmbH,
Hi!
I just got some files from the CVS repository, e.g. a_gentm.c.
Now I am looking for the constant ERR_R_NESTED_ASN1_ERROR.
Which header file do I have to get for it?
I already have asn.1 and asn1_mac.h.
--
Ciao ... Heiko Nardmann (Dipl.-Ing.)
Software Development, secunet (www.secunet.de
OBJ_bsearch()
as far as I have understood the source code.
--
Ciao ... Heiko Nardmann (Dipl.-Ing.)
Software Development, secunet (www.secunet.de)
Security Networks GmbH, Weidenauer Str. 223-225, D-57076 Siegen
Tel. : +49 271 48950-13 Fax : +49 271 48950-50
Dr Stephen Henson wrote:
>
> Heiko Nardmann wrote:
> >
> > Hi!
> >
> > I am using SSLeay-0.9.0b for a project.
> > Now I found that decoding an X.509 certificate
> > does not work since the decoding of the Validity
> > field assumes UTCTime to b
CHOICE?
Or: is there a patch which fixes this bug?
--
Ciao ... Heiko Nardmann (Dipl.-Ing.)
Software Development, secunet (www.secunet.de)
Security Networks GmbH, Weidenauer Str. 223-225, D-57076 Siegen
Tel. : +49 271 48950-13 Fax : +49 271 48950-50
24 matches
Mail list logo
