Title: Certificate Problem :)
Dear fellow developers,
I am experiencing some problems with a product we released. We rely on a public/private key architecture. The client connects to our server and we check to see if the certificate the client had was signed by us. I do this by check
Title: Certificate creation with openssl.cfg days being ignored
I have a script that creates all my cert/key pairs for me. The thing though is when creating a self-signed CA it does not read the number of days from the openssl.cfg. Is there a way to put in the openssl.cfg how many days the CA
Title: Creating certificates
OpenSSL Ver: 0.9.6b
OS: Solaris 8
CC: CC 5.2
I would like to be able to create certificates without using the openssl tool if possible. I don't like the idea of my program having to call an outside application to create certificates, and I was wondering
Title: SSLEAY32
I have come across a problem I'm not quite sure how to fix. I use d2i_x509 in one of my applications. When I compile on NT I can't find any libssl.lib or libcrypto.lib files all I find is ssleay32.lib so I link against that. It comes up with an undefined symbol _d2i_x
EMAIL PROTECTED]
- Original Message -
From:
Andrew Finnell
To: Openssl
([EMAIL PROTECTED])
Sent: Tuesday, August 28, 2001 3:40
PM
Subject: SSLEAY32
I have come
across a problem I'm not quite sure how
Title: [openssl-users] Preverify Password for certificate
OpenSSL Ver: 0.9.6b
Hello all,
I am writing an application and in my code I would like to verify that a stored password I have will work for a certificate. Is there a programatic way to do this? I would assum
Title: RE: [openssl-users] Preverify Password for certificate
Adas,
Thanks, I will try PEM_read_bio_RSAPrivateKey. Yes I was trying to check if the password was valid for a key not a certificate. I am using the password callback, but that excepts a password to be r
Title: PEM_read_RSAPrivate_Key access violation
Hello,
I am trying to use the PEM_read_RSAPrivate_Key method. I do something like this
//-
FILE * fp = fopen ( "myprivatekey.pem", "r" );
if ( PEM_read_RSAPrivate_Key ( fp , NULL, 0, "M
Title: Obtaining IP Address
Dear OpenSSL followers,
Is there a way to obtain the host/ip address from an SSL *. It would help me greatly in my project if that was possible. Thanks!
-
Andrew T. Finnell
Software Engineer
eSecurity Inc
(321)
Title: RE: Newbie
Michael,
What I understood from the message was this. He wants to load a file into memory. Encrypt the memory and store that in his database. Right now he is using the openssl tool to do this. He wants to write his own program that will bas
Title: Message
Dear openssl
people,
In one of my classes methods I do
something similar to this. I got it off the openssl site. When EVP_EncryptInit
is called, it blows away all my memory. My this pointer is invalid and all the
local data becomes garbage. I was wondering if there was any
Title: Determing SSL conection to use in password_Callback
I have come across a little delima.. I set a password callback on a SSL_CTX, and when I went to write the implementatino I realized I couldn't determine what SSL * connection was currently in use.. And every SSL connection I h
Title: Message
Hi all, I
have come across quite a strange problem. I have an application that when ran
through explorer or the command prompt will run with the DSA cipher. Now when I
run the application through Visual Studio 6 or through debug in Visual Studio 6
the applicatino fails with a
Title: Message
I'm having some difficulty using PEM_read_privatekey.
When I link my application with the debug dll ms runtime PEM_read_privateKey
works, but if I link against the release dll ms runtime then PEM_read_PrivateKey
exceptions out.. Anyone have a clue why this is?
---
Title: Message
I'm having a problem getting my server on Solaris 8 (
Built with SunCC 5.2 ) to obtain a certificate from my client. I have set
SSL_CTX_set_verify ( ctx , SSL_VERIFY_PEER, 0 ) on both client and server.
I have created valid certificates to the best of my knownledge. The sam
Title: Message
I've looked
in the documentation but is there a way to get a better from from the return of
X509_get_notBefore instead of having to print it to a BIO ? I need something I
can convert it into a date to compare it with the current time... Something that
would return a time_t or
Title: Message
In my application , I am doing something simliar to
this on the client
SSL_use_PrivateKey_file ( "blah" );
SSL_use_certificate_file ( "blah"
);
SSL_renegotiate ( ssl );
Not
after that is done I try send a large amount of data on the
server
And I
Title: Message
Could
someone tell me what the usual cause of a PEM_read_bio:No start line error is? I
am getting this and i think it's causing some problems in my application.
Thanks.
-Andrew T.
FinnellSoftware EngineereSecurity Inc(321) 394-2485
Title: Message
Is openssl's key exhange asymmetric or symmetric. And
could someone explain to me what this means? I have been asked this and need to
explain it. If there is a site I could go , to learn this stuff I will be more
than happy to visit it. Also if anyone could recommend a book
Title: RE: certificate problem
Lutz,
Well sometimes installing additional software is not acceptable as was in my case. Do you have any other suggesstions for people like me? We ship a product that uses OpenSSL and we don't want to install 3rd party apps. While Soo Ho
Title: Message
Could
someone point me to a list of all the algorithms OpenSSL uses so that I can put
it in the report for the export beauru?
Thanks! Btw, I didnt see anything of Openssl.org about
this
-Andrew T.
FinnellSoftware EngineereSecurity Inc(
Title: Message
I am getting
an error message , PEM_read_bio: No start line. Now I am assuming this may have
to do with the pem certificate im trying to read, but all my certificates are
fine. Could anyone give me some insight on what causes this error.
Thanks!
-
Title: RE: ssl-cert-HOWTO.txt for review
If openssl can generate random data and spit it out in a file then why use a file to begin with? Can't openssl ( tool ) just generate its random data internally and use that? I think that's a lot safer than spitting it out to a file and prevents
Title: Cryptology Questions
Hi all,
I was wondering if someone could help me out. I have to speak with some cryptology experts later today and was wondering if some answers could be answered.
1. What is the normal/(most secure) way to store private keys and protect them?
te key to encrypt the MD in the first place.
I know I've glossed over the many details here but hope this is the clarification you are
looking for. If not, ask again.
HTH,
Rob
-Original Message-
From: Andrew Finnell [mailto:[EMAIL PROTECTED]]
Sent: Thursday, December 06,
r
eSecurity Inc
(321) 394-2485
> -Original Message-
> From: Stephan Feder [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, December 12, 2001 2:51 PM
> To: Andrew Finnell
> Cc: '[EMAIL PROTECTED]'
> Subject: Re: [jacorb-developer] JDK 1.3.0.2 / JacORB 1.4 w/
&g
Title: Anonymous Ciphers
Good Morning All,
I am trying to match up some anonymous ciphers to use between JSSE and OpenSSL. I did a dump of JSSE and came across some anonymous ciphers. I then did a dump of the ciphers built into my build of OpenSSL. I did see any that specifically sai
Title: RE: OpenSSL Key Generation GUI for Windows
I was under the impression that on windows OpenSSL uses RAND_screen which will obtain random data from the screen and mouse events? Shouldn't you use that?
-
Andrew T. Finnell
Software Engineer
eSec
Title: Message
Paul,
Did you post what the problem was during your
compile?
-Andrew T.
FinnellSoftware EngineereSecurity Inc(321)
394-2485
-Original Message-From: Paul E. Prak
[mailto:[EMAIL PROTECTED]] Sent: Monday, March 25, 20
a problem with the
source.
My problem is in C++ it acts a bit weird and I do
not know the real problem.
Regards,
Paul.
- Original Message -
From:
Andrew Finnell
To: '[EMAIL PROTECTED]'
Sent: Monday, March 25, 2002 11:11
PM
S
30 matches
Mail list logo
