behavior
;-) It seems like I don’t really have a choice.
If it does not make sense, it is okay, it is not intended to make sense. It
just implies that I don’t like either of my alternatives.
Robert
> On Aug 11, 2015, at 5:49 PM, Wim Lewis wrote:
>
>
> On Aug 11, 2015, at 2:0
So this leads to the next question:
How do I teach OpenSSL the format of the value for a custom extension without
writing code?
I have been poring over man pages and I don’t find anything obvious.
Robert
> On Aug 11, 2015, at 2:24 PM, Wim Lewis wrote:
>
> On Aug 11, 2015, at 9:24 A
I am trying to build a certificate request with a custom OID and it is encoding
strange characters in the certificate.
For example I specify the following line in the .cnf file:
bla_policy = ASN1:PRINTABLESTRING:blabla
Then I get the following when I dump the csr:
1.2.3.4.5.6.7:
your files or to mail the virus to everybody
or to accept the illegal certificate.
Until people become willing to give up functionality for security this
will always be a problem. It does not make the technology bad, just the
implementations of the technology.
Robert Sandilands
Thomas Nichols
Another thing you can do it to go to www.rijndael.com. It contains a lot
of information/links about rijndael.
Robert Sandilands
Johannes Baagoe wrote:
>
> Robert Sandilands wrote:
>
> > There seems to be two ways... The newest CVS contains updates
> > for Rijndael and
There seems to be two ways... The newest CVS contains updates for
Rijndael and I posted patches for 0.9.6 for Rijndael. So go either to
the CVS repository for the newest and bestest or look in the archives
for my patch.
Robert Sandilands
Johannes Baagoe wrote:
>
> Hello,
>
> A
Has anybody started incorporating the AES winner Rijndael into OpenSSL?
Is there any plans to do it? If somebody would like it in there and
nobody else is busy, I wouldn't mind trying...
Robert Sandilands
__
OpenSSL Pr
Look at http://www.aquasecurity.com/protect/other/sslcli.cpp and
http://www.aquasecurity.com/protect/other/sslsrv.cpp
Robert Sandilands
> Carlos Serrao wrote:
>
> Hi all,
>
> can someone provide me with a good example how to handle client
> authentication on a SSL connec
iate( ssl );
result=SSL_do_handshake(ssl);
if (result<0) return( GEN_NOREAD );
ssl_write( ssl, "NOP", 1 );
The write is included because it seems to cause the error. But without
it, nothing happens... Any idea's, information, example code that is not
in s_client.c or s_server.c wo
>From my experience with a Thawte certificate: I could use a
www.something.co.za certificate for
https, simap, spop and some other things as long as the name used by the
program requesting it, was www.something.co.za. The protocol and ports
did not matter at all.
Hope this helps.
Rob
);
fclose( fp1 );
fclose( fp2 );
return( flag );
}
This is sort of pseudo-code and will return 0 when it verifies and 1
when not. This is copied from other code I wrote so, as is, it may not
work. But the basic principles are there.
Robert Sandilands
Douglas Wikström wrote:
>
> hello!
>
where the public keys and the CA's public keys are for verifying
the other's keys. Those keys and the symbolic links associated with them
is pretty important.
Robert Sandilands
Albert Serra wrote:
>
> Does it work?
>
> Because what exact commands do you have to add if you
oad_crypto_strings();
SSLeay_add_all_algorithms();
installed=1;
}
It is part of a class I wrote for myself so everything may not make
sense, but it should help.
Robert Sandilands
Andrew Barnes wrote:
>
> Is there a way to have your private key and
> certificate embedded in the appl
I have to admit to not using the BIO functions but I have mixed select()
and SSL_read/SSL_write with success. Using BIO functions BIO_get_fd may
get you the handle you need to be able to use the select function??
Robert Sandilands
Alwyn Schoeman wrote:
>
> Hi,
>
> After some te
Here is the sslsrv.cpp and sslcli.cpp that I promised that does client
verification. I've also modified them to work under Windoze. Please feel
free to use this in any way you see fit except if it implies a warrantee
or any other legal terms :-)
Robert Sandilands
sslsrv.cpp
sslcli.cpp
y time you load/use the cert then it does not matter that much.
Robert Sandilands
Mel wrote:
>
> i am a newbeee
>
> i am planning to ship my application and have the following questions:
>
> 1) is it ok to send the cert file along with my application?. if so can
> it be dang
also feature... If there is interest
I'll post a modified demos/ssl/cli.cpp and demos/ssl/serv.cpp that
compiles under both Linux and Windoze and where this feature works.
Robert Sandilands
Lutz Jaenicke wrote:
>
> On Tue, May 30, 2000 at 03:38:12PM -0300, Marcos Rogerio wrote:
>
he
Registry"... If I were a system administrator, I would have anybody
considering to look at the cover of that book drawn and quartered.
But this is all a moot point if we don't have somebody "important
enough" driving the process of writing a book.
Robert Sandilands
James Dabb
uot;void *data" structure that you
can declare for that callback. Maybe we should add one?
Is there a process for changing an API in OpenSSL?
Robert Sandilands
Joel Yarde wrote:
>
> One way of achieving this type of verification is by creating a verify
> callback which will acce
a specific path but
against one loaded in memory. Hope this helps.
Robert Sandilands
Mark wrote:
>
> Hi all --
>
> I was wondering if anyone, anywhere has or knows of a more complete
> documentation set of the openssl ssl/tls library... I'm trying to code up a
>
xpressed within this document are mine alone at this
moment in time. I reserve the right to change my opinion for no reason
whatsoever.
-----
Robert Sandilands - a dotty engineer and computer sleuth.
Senior Virus
21 matches
Mail list logo
