Hi Tomáš and openssl users,
finally the server at gibs.earthdata.nasa.gov was upgraded in order to
support SHA256 (instead of SHA1) as peer signing digest algorithm.
So, it is now possible to properly connect to it on Ubuntu 20.04 without
the need of lower the default SECURITY LEVEL from 2 t
Hi Tomáš,
thank you very much for the clarification.
Best regards.
Andrea
Il 14/08/2020 08:41, Tomas Mraz ha scritto:
> The server apparently doesn't support them which indicates that it is
> some older implementation but that doesn't necessarily mean it is
> non-compliant. It is just less cap
SSL or cUrl or Wget default
>parameters. The OpenSSL 1.1.1f package available for Ubuntu 20.04 is
>build with the "-DOPENSSL_TLS_SECURITY_LEVEL=2" option.
>
>The relevant errors are: "SSL routines:tls12_check_peer_sigalg:wrong
>signature type:../ssl/t1_lib.c:1145" a
"-DOPENSSL_TLS_SECURITY_LEVEL=2" option.
The relevant errors are: "SSL routines:tls12_check_peer_sigalg:wrong
signature type:../ssl/t1_lib.c:1145" and "SSL3 alert
write:fatal:handshake failure".
On the same machine it is possible to connect to that server using
Firefox version 79.0 (th
I'm trying to reproduce the signature in the attached file.
I believe is smime PKCS7 but when I execute
openssl smime -verify -in FARMD_16611264_20110524_1153.xml I get the message
Error reading S/MIME message
31662:error:2107A087:PKCS7 routines:SMIME_read_PKCS7:no content
type:pk7_mime.c:296:
C
Hi all.I'm using OpenSSL 1.0.0a and I need to produce some different kinds of
signed PKCS7; in particular, I'm trying hard to change the signature algorithm
to sha256-with-rsa (sha256WithRSAEncryption, OID.1.2.840.113549.1.1.11).The
output (parsed with asn1parse command) shall be like in the fol
