Re: Revoking Certificates

Generate a crl, then make the app to check for any requesting service user's cert against it. You needn't and cannot control user's certs yourself. Hazel --- Jonh Hale <[EMAIL PROTECTED]> wrote: > > > I have setup a mini-CA for a specific app. I > generated a cert, self-signed it, > and then us

Re: MSIE5.0 pkcs12 file import error

Why, I found that netscape support pcks12#, while IE deals with pcks 7# and 10#(for microft's certificate server supports only 7# and 10#, as it says). Hazel --- Roland Dirlewanger <[EMAIL PROTECTED]> wrote: > > > Stone Yang wrote : > > > Hi, > > I want to create a pkcs12 file for MSIE

Re: bind question?

It means the ports in httpsd.conf were being using by other programs already. Change them, and try again. Hazel --- "Zachary T. Wilson" <[EMAIL PROTECTED]> wrote: > I have apache_1.3.12+ssl_1.39. Everything seems to > be running fine except > that in my error logs i have this bind error: > bind

Re:

You can refer to www.apache-ssl.com, or to recent archives of this list. Hazel --- greg zhang <[EMAIL PROTECTED]> wrote: > Hi All, > > I am new openssl. > > I set up a apache server with openssl feature. > > But I don't understand how to produce a certificate. > > I do "make certificate" get

Re: openssl.cnf question

Got this from openssl ca cmd help: " -key arg- key to decode the private key if it is encrypted", This will answer your question. Hazel __ Do You Yahoo!? Talk to your friends online with Yahoo! Messenger. http://im.yahoo.com ___

Re: PKCS12 -> PEM or DER

pkcs12->PEM openssl pkcs12 -in pkcs12file.p12 -out pemfile.pem Hazel --- David aka SpanskA <[EMAIL PROTECTED]> wrote: > Hi, >I'd like to know how I could take a PKCS12 file > and make a PEM or DER CA > certificate with it. > > > Thank you. > > > David > _

Re: hello can some one helpme on this

Use function "X509_Verify_cert" in openssl/crypto/x509/x509_verify.c as a clue to find answers to your questions for example. Hazel --- Krishnam Raju <[EMAIL PROTECTED]> wrote: > i am using open ssl api to build an application. i > hv couple of doubts > regd. the client and server certificates. >

crl check

Does openssl-0.9.5 support crl check when verifying a client certificate for SSL connections? Hazel __ Do You Yahoo!? Talk to your friends online with Yahoo! Messenger. http://im.yahoo.com

Re: broken pipe

For netscape browsers: 1. The first step: >define a personal certificate? Is that by the same method > that i did to make a > > server certificate and 2. combine the certificate , the corresponding key and CA's certificate together to a *.p12 form, >then export to the browser > (personal-cert.cr

How does openssl support crl mechanism?

Any help is appreciated. Hazel __ Do You Yahoo!? Talk to your friends online with Yahoo! Messenger. http://im.yahoo.com __ OpenSSL Project http://w