On Tue, Oct 02, 2007, BSC wrote:
>
>
> Thanks a lot frieds, the problem is solved
>
> But can U help me with creation og CRL version1 instead of v2?
If any extensions are present the CRL must be V2.
Check the config file. Make sure there are no explicit CRL extensions
(by default there wont b
ks a lot frieds, the problem is solved
But can U help me with creation og CRL version1 instead of v2?
--
View this message in context:
http://www.nabble.com/Unsigned-CRL-and-CRL-v1-tf4510330.html#a13001880
Sent from the OpenSSL - User mailing list archive at Nabble.com.
On Mon, Oct 01, 2007, Marek Marcola wrote:
> Hello,
> > I need to generate unsigned (not signed by any certificate) CRL
> >
> > How can I do this? Maybe it is possible to crack signed CRL and eraze a
> > signature?
> CRL is ASN.1 SEQUENCE of tbsCerlList, signatureAlgorithm and
> signatureValue. I
Hello,
> I need to generate unsigned (not signed by any certificate) CRL
>
> How can I do this? Maybe it is possible to crack signed CRL and eraze a
> signature?
CRL is ASN.1 SEQUENCE of tbsCerlList, signatureAlgorithm and
signatureValue. If you want to get only tbsCertList (tbs - to be sign)
part
* BSC wrote on Sun, Sep 30, 2007 at 00:05 -0700:
[...]
> Friend, testing is testing. I'm testing mobile phones and there is a lot of
> tests that doesn't make any sense in the real world. So...
... and processing unsigned CRLs is much faster while saving RAM
memory, right? SNCR :-)
oki,
Steffe
bile phones and there is a lot of
tests that doesn't make any sense in the real world. So...
--
View this message in context:
http://www.nabble.com/Unsigned-CRL-and-CRL-v1-tf4510330.html#a12963323
Sent from the OpenSSL - User mailing list archive at Nabble.com.
__
> I need this CRL for testing needs ))
That really doesn't make any sense. What is the point of testing with
something that bears no relationship to anything in the real world?
If you want to test if your CRL logic works, create your own test CA, your
own test certificate, and your own test CRL
ssible to crack signed CRL and eraze
>> a
>> >> signature?
>> >>
>> > I cannot imagine any use for an unsigned CRL, since everyone could
>> forge
>> > such a CRL. So I doubt it is possible to generate one that is
>> understood
>> > by any
not, but it's probably the best and most accurate answer
you're going to get.
*Why* do you want an unsigned CRL? What would such a thing give you
that a standard signed CRL would not? How do you expect to use it,
given that most or all of the software that uses CRLs requires a
verified
;
>> Regards,
>> BSC
>>
> I cannot imagine any use for an unsigned CRL, since everyone could forge
> such a CRL. So I doubt it is possible to generate one that is understood
> by any SSL application.
>
> Hope it helps.
> Ted
> ;)
>
> --
&
BSC schrieb:
Hello
I need to generate unsigned (not signed by any certificate) CRL
How can I do this? Maybe it is possible to crack signed CRL and eraze a
signature?
Please help
Regards,
BSC
I cannot imagine any use for an unsigned CRL, since everyone could forge
such a CRL. So I doubt
Hello
I need to generate unsigned (not signed by any certificate) CRL
How can I do this? Maybe it is possible to crack signed CRL and eraze a
signature?
Please help
Regards,
BSC
--
View this message in context:
http://www.nabble.com/Unsigned-CRL-tf4510330.html#a12863760
Sent from the
12 matches
Mail list logo
