Thanks everyone for the information.
Ollie
-Original Message-
From: Eric Rescorla [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, July 05, 2000 10:38 PM
To: [EMAIL PROTECTED]
Subject: Re: PKCS7_encrypt with a DSA certificate?
Eric Murray <[EMAIL PROTECTED]> writes:
> > 1. PKCS#7 requires R
I'm curious: the SSL server code (s3_srvr.c, line 1677) sets an error of "no
certificate returned" when the client's certificate fails verification. Why
use this (rather misleading) error message? The equivalent client code
(s3_clnt.c, line 764) uses the more intuitive error of "certificate verify
That looks right to me. Perhaps someone else has an idea of what might be
wrong?
Ollie
-Original Message-
From: Cintia Borges Margi [mailto:[EMAIL PROTECTED]]
Sent: Saturday, April 15, 2000 8:55 PM
To: [EMAIL PROTECTED]
Subject: RE: OpenSSL - X509 functions
> Sounds like you might be
ection Ltd.
-Original Message-----
From: Oliver King
Sent: Thursday, February 10, 2000 10:33 AM
To: '[EMAIL PROTECTED]'
Subject: Multiple threads handling one connection
Hi all,
I've seen (and written) test programs that drive a number of SSL connections
from multiple threads, but non
Hi all,
I understand that RSA's TIPEM (Toolkit for Interoperable Privacy-Enhanced
Messaging) generates PKCS#7 EnvelopedData structures in which the
EncryptedContent is an ASN.1 _sequence_ of octet strings, rather than a
single octet string. Can anyone out there who has dealt with TIPEM confirm
th
Hi guys,
In the openssl-users archive, I've seen a few references to hardware crypto
accelerator cards from both Rainbow (CryptoSwift) and nCipher (nFast). Are
there any other cards out there with similar functionality?
I'm interested in finding out how well these crypto cards integrate with
Ope
Well the obvious error is the following message:
Using configuration from /usr/local/openssl-0.9.4/openssl.cnf
Unable to load config info
You should use the -config option with the 'openssl req' command to tell it
where your openssl.cnf file is located.
Ollie
> -Original M
Try these links for starters -- they helped me!
OpenSSL homepage: http://www.openssl.org
SSLeay docs: http://www.columbia.edu/~ariel/ssleay
FAQ: http://www2.psy.uq.edu.au/~ftp/Crypto
Programmer Reference: http://www2.psy.uq.edu.au/~ftp/Crypto/ssl.html
Ollie
> -Original Message-
> From:
Hi everyone,
I notice that the OpenSSL only supports the DSA signature algorithm with SHA
and SHA-1 message digests. Is this a limitation of OpenSSL or of the DSS
Digital Signature Standard?
Thanks in advance
Ollie King
Data Connection Ltd
__
Thanks everyone for your replies. In summary, my understanding from this
thread and from reading the SSLv3 spec (stop me if I'm wrong!) is this:
- cipher suites such as ADH-DES-CBC-SHA and ADH-RC4-MD5 are supported (but
not recommended due to lack of authentication); to use them, I must compile
w
> Is there anything special I should be doing to allow ADH to work?
Please check the list of supported ciphers with "openssl ciphers".
You might
note, that the ADH ciphers are not listed. The reason is, that the
default
cipher selection string is (see ssl.h)
Hi,
I'm experimenting with the various cipher suites that OpenSSL 0.9.4
supports, and am having some problems understanding DH, EDH and ADH and how
to use them. I need someone to point me towards the light :-)
So far, using some simple home-brewed test programs, I've successfully
managed to esta
12 matches
Mail list logo
