s a reason why this cipher suite isn't currently supported?
(I.e. saving society from itself :)) And if not, does anyone have any
relevant guidance so that I can start looking into creating a patch?
Thanks in advance,
Colin
___
openssl-users
f they are only using
server authentication.
Thanks again,
Colin Edwards
CISSP, GCIH, GCWN, GSEC, MCSE
-Original Message-
From: openssl-users [mailto:openssl-users-boun...@openssl.org] On Behalf Of
Kurt Roeckx
Sent: Tuesday, July 14, 2015 1:06 PM
To: openssl-users@openssl.org
Subject: Re:
ively
result in MitM against OpenSSL clients.
Can anyone on this list clarify with details?
Thanks,
Colin
sent from mobile
___
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
That fixes the sample program.
But it doesn't fix all of the original bug. We have an issue with
X509_print_name_ex_fp called with flags
XN_FLAG_ONELINE is causing a crash during SSL_connect but calling it
with no flags works.
-Colin
On 08/04/2011 02:25 PM, Harshvir Sidhu wrote:
Seems
, /MDd, /MT, or /MTd does not solve the problem.
Thanks,
-Colin
#include
#include
#include
#include
#include
#include
#include
#include
enum {
DEFAULT_KEY_BITS = 1024,
DEFAULT_CERT_DURATION = 60 * 60 * 24 * 365,
};
#define CERTIFICATE_COMMENT "Automatically generated by Ncat
, /MDd, /MT, or /MTd does not solve the problem.
Thanks,
-Colin
#include
#include
#include
#include
#include
#include
#include
#include
enum {
DEFAULT_KEY_BITS = 1024,
DEFAULT_CERT_DURATION = 60 * 60 * 24 * 365,
};
#define CERTIFICATE_COMMENT "Automatically generated by Ncat
lem correctly? Is this behaviour by openssl correct
or incorrect, likely to change, or is it possible to make it work at the
application level?
(CC replies to me as I am not on the list)
--
Colin Phipps
c...@netcraft.com
Issuer: C=KR, O=Government of Korea, OU=GPKI, CN=GPKIRootCA
Not Before: Mar 15 0
Hello,I am trying to compile OpenSSl for uClinux on an ARM7tdmi platform. After
browsing this and other forums I found this tutorial..
http://www.ucdot.org/article.pl?sid=03/10/23/2249235&mode=thread>uCdot
OpenSSL Tutorial
My question is, are these patches and instructions only for Coldfire pl
ng this, I found that the RPM
fails to package the files in /lib64 and/or /usr/lib64 which is
something that needs to be taken up wit the RPM maintainer.
I wonder if anyone has been able to get openssl build with -fPIC for use
with mod_ssl (apache13x) on Fedora Core 4 x86_64
Best Regards,
Col
One would hope not but I've seen cases where hackish solutions like that
are required. I couldn't really say if that's the issue here without
some testing and I'm actually thrilled to say I don't have a clearcase
installation I'm forced to deal with these days.
-
It sounds as though perl is not available from your clearcase FS. It may
be as simple as updating paths, or as involved as having to include perl
binaries within your clerarcase tree (to assure the ability to build
from multiple machines.
-- Colin Hill
--
Scoophost.com - a service of
Okay,
basically iam try to develop a security feature for php.
i need to send a filename over public key encryption, which is SSL in this
case, NOT https
so php's engine sends it over ssl, but what happens on the client end? will
it panic when a PK data is sent to it?
or would a client program
Hi,
Lets say i get my application to send something, maby a file or data to a
clients machine over SSL as a PKI
is there a client program required?
__
OpenSSL Project http://www.openssl.org
Use
Hi,
Iam trying to get php to use ssl for sessions but i dont want to use HTTPS
how can this be dont without using HTTPS. Will the browser understand an
ssl request/connection if https is not used?
__
OpenSSL Project
*cert)` function in
http://cvs.sourceforge.net/cgi-bin/viewcvs.cgi/sylpheed-claws/sylpheed-claws/src/common/ssl_certificate.c?rev=1.3&content-type=text/vnd.viewcvs-markup
Many TIA,
--
Colin
__
OpenSSL Project
No answer right now - I left hime a text messsage.
Colin
-Original Message-
From: CorreiJ [SMTP:[EMAIL PROTECTED]]
Sent: Thursday, September 12, 2002 3:59 PM
To: openssl-users
Subject:someone in the UK phone Andy pls
and tell him to phone someone at his company to
m & .p12)
into the Windows certificate store and used that with Wincrypt to sign a
copy of the PEM file (stunnel.pem.sgn). WinCrypt seems to zip the
file(s) and then add a signature.
(I've tried to keep it small)
Colin
stunnel.pem.sgn
Description: Binary data
stunnel.
now / tested if it suffers from the Microsoft intermediate CA
forging bug?
Can anyone suggest a simple, cheap GUI tool which can be used with OpenSSL
certificates to sign and verify files (we need to keep these as files) which
runs on MSWindows?
Colin
___
On 12 Apr 2001 08:00:05 +1000, Michael Czapski wrote:
> Hello Colin,
> You need to tell the server to ask for one, for example:
>
> if (giRequirePeerCert) {
> SSL_CTX_set_verify
> (*sslCtx
> ,SSL_VERIFY_PEER | SSL_VERIFY
call in question is:
SSL_get_peer_certificate(ssl)
I can post a larger code sample if necessary, but my question is: Is
this the right call for client authentication, or does it only work for
server authentication?
Thanks.
--
Colin Fox
getting the subject?
/colin
X509 *Cert = X509_new();;
BIO *certBio = BIO_new(BIO_s_mem());
int result = BIO_write(certBio, Certificate->b_data,
Certificate->b_size);
d2i_X509_bio(certBio, &Cert);
if (Cert != NULL) {
char *str = X509_NAME_oneline(X509_get_subject_name
other *means*, I cannot init a cert.
I 've looked in the list server and see possible problems with multithreaded
apps. however if that was the case here surely I wouldn't be able to access
the memory at all. Or am I missing something?
Any help much appreciated.
/colin
X5
nstead of the d2i_X509 if passing between programs/DLL?
Any help much appreciated.
/colin
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
a few
things I need to load before I can use the openssl functions, do I the have to
relase them after use with some function? Second I understand the freeing of the
x509 cert but are there other freeing functions? For example for subject
name?
Any help much appreciated.
/colin
X5
Yes there's a win32 version. If you had looked at the FAQ page you could
have found this out for yourself.
/colin
- Original Message -
From: "Luck, Nathan" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, November 29, 2000 6:36 AM
Subject: win3
I too would be interested in such a wrapper OR tips as to how I could build
one myself. ie what should I look out for and definately NOT do.
/colin chalmers
- Original Message -
From: "Bernard Dautrevaux" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday,
that the certificate
already exists and will not be processed/output.
Is it not possible to give for example the serial
number of the certificate to export?
Any tips/ideas appreciated.
Met vriendelijke groet,
Colin Chalmers Snr.
Project Engineer
maXware
MaXware Benelu
do ;)
*
* Carlo
*
* ______
* OpenSSL Project http://www.openssl.org
* User Support Mailing List[EMAIL PROTECTED]
* Automated List Manager [EMAIL PROTECTED]
*/
--
or pointers you can provide.
--
Colin Bradley
hutchison avenue software corporation
__
OpenSSL Project http://www.openssl.org
User
Is there any way to revoke a certificate which has not expired using openSSL
apps?
Could somebody please detail it to me?
Thanks,
Colin.
__
OpenSSL Project http://www.openssl.org
User Support
q programs, and the correspondance
between configuration fields and command line arguments is not clear.
I've written an html document setting out the correspondances as near as I can
determine them.
Any ideas on what would make a CA management tool useable are welcome.
Colin.
31 matches
Mail list logo
