Re: openssl-users: DKIM, DMARC and all that jazz, and what it means to us

Hi, Richard... I'm not going to place my reply after Jakob's, as his makes a number of excellent points, with many of which I wholeheartedly agree (I'm not big on DKIM and DMARC, myself). However, a few points specific to the case at hand, if I may: Richard Levitte wrote: Hi all, It seem l

Re: [openssl-users] OpenSSL Security Advisory - CVE-2015-1793

On 07/10/2015 09:32 AM, Matt Caswell wrote: On 10/07/15 13:09, R C Delgado wrote: Hello, With regards to CVE-2015-1793, I've seen the example in verify_extra_test.c. How deep does the certificate chain have to be? If I have 2 self-signed CA certificates, and a non-CA certificate is received fo

Re: [openssl-users] Stand alone AES-CTR module

Hi, all... I think it wise to go back to the OP's stated objective, to create "an independent to libraries source code for demonstration purposes for AES-CTR mode." The operative prepositional phrase here being "for demonstration purposes." Thus, whether it is wise to implement one's own cry

Re: [openssl-users] [openssl-announce] Pas de courriel

On 01/12/2015 06:57 AM, Gabriel Marques wrote: For all the openssl list subscribers: The openssl-announce is a standard e-mail list based on MailMan. So to unsubscribe just access https://mta.openssl.org/mailman/options/openssl-announce And follow the un-subscription instructions - no need to

Re: Know Extended Key Usage

is ! I also used - openssl s_client -showcerts -connect google.com:443 <http://google.com:443> < /dev/null | openssl x509 -outform PEM | openssl x509 -noout -text | grep -A1 "X509v3 Extended Key Usage" On Tue, Oct 7, 2014 at 11:40 PM, Lewis Rosenthal mailto:lgrosent...@2rosenthals

Re: Know Extended Key Usage

Hi, Akash... On 10/08/2014 01:40 AM, Akash Jain wrote: HI, How can I know the "Extended Key Usage" parameters of a remote SSL enabled site using OpenSSL ? Does this help: https://www.madboa.com/geek/openssl/#cert-retrieve You could modify the one script there to something like: #!/bin/sh

Re: Apache SSL proxy to Weblogic fails

Hi, Aaron... On 09/19/2014 01:04 PM, Stromas, Aaron wrote: Greetings, I am looking for help with a problem I've ran into a using mod_proxy/mod_ssl. The Apache HTTP server on SLES 11 SP3 64 bit, OpenSSL 1.0.1.f acts as SSL proxy to the Weblogic 10.3 running on Redhat. The mod_ssl is configu

Re: Platform query

Hi, Tim... On 09/01/2014 04:45 PM, Tim Hudson wrote: On 31/08/2014 3:02 PM, Lewis G Rosenthal wrote: Rich, what needs to be done to see that OS/2 does not get removed from HEAD? Can someone provide an OS/2 build environment for team members? Well, that's kind of a loaded question, but here a