AesDecrypt(unsigned char * cipher, int cipher_len (not sure if
this should be len of encoded data?), char * pwd) {
base64decode cipher;
AES-256-CBC decrypt decoded cipher;
return decrypted binary data;
}
<<<<
Any help with this would be much appreciated.
Thanks in advance
Craig
openSSL, or what? Can I provide any
other information to help solve this?
Thanks to anyone reading this,
Craig MacKenna
Los Gatos, CA
__
OpenSSL Project http://www.openssl.or
longer
keys on USB tokens before, was there any resolution of those? (There
was a suggestion it might be something to do with padding.)
I'd be grateful for any ideas.
Thanks!
- Craig.
__
OpenSSL Project
-key slot_0 -keyform engine -out csr.pem -text
I'm guessing that this indicates the problem is actually in OpenSC
somewhere; I'd still be interested in any other ideas people have
though.
Thanks!
- Craig.
On 21 April 2011 19:12, Craig Heath wrote:
> I'm trying to generate a PK
y \
-days 3650 \
-config $CONFIG
openssl ca \
-config $CONFIG \
-policy policy_anything \
-out $CERTPATH/http.pem \
-infiles $CERTPATH/http.csr
TIA
--
Craig White ~~ craig.wh...@ttiltd.com
1.800.869.6908 ~~~ www.ttiassessmen
h my server certificate (created with the code
below) is not trusted and the worst part is that it doesn't give any reason...
the only thing displayed is 'permanently store this exception' (meaning, not a
name error, etc.)
Craig
On Aug 24, 2011, at 2:22 PM, Eduardo Navarro wrot
I see said the blind man... It took a while to figure out what you were asking
(EKU) but I had to set my apache server to 'SSLVerifyClient none' unless I can
induce clients to install not only the CA cert but also a user cert. Now onto
Nginx ;-)
Thanks
Craig
On Aug 24, 2011,
ond what a user can manage but some users can manage
them, but this is the wrong list... it would be an OS problem.
Craig
On Aug 25, 2011, at 12:06 PM, t...@terralogic.net wrote:
> TDWaterhouse In Canada. I'm in Calgary. THose idjots tell me to reboot my
> computer
you can trust that
your root certificates do what they are supposed to do.
Craig
On Aug 25, 2011, at 1:28 PM, t...@terralogic.net wrote:
>
> I already know its my certificate store. I only asked how to load in their
> noew root cert
>
> On Thu, Aug 25, 2011 at 01:09:20PM -0700,
contents of the CSR but not the subjectAltNames embedded in the
CSR.
Added -nameopt multiline which is cool but still no ultimate joy
Can someone throw me a bone here?
--
Craig White ~ craig.wh...@ttiltd.com
3650 \
-config $CONFIG
openssl ca \
-config $CONFIG \
-policy policy_anything \
-out $CERTPATH/http.pem \
-infiles $CERTPATH/http.csr
Craig
On May 23, 2013, at 9:12 AM, Erwann Abalea wrote:
> Are you sure there's a SAN extension in the displayed CSR?
> Dump the entire conten
On May 23, 2013, at 10:28 AM, Jakob Bohm wrote:
> On 5/23/2013 6:21 PM, Craig White wrote:
>> hmmm… I guess it may not be there but it's there in the cert that I signed
>> with my CA self which is using the same csr
>>
>> Is there something wrong w
got it now… the script I was using was directing it to a different openssl.cnf
than the one I was editing. I obviously moved a copy of the entire directory to
play with a copy and not the real CA.
Thanks all
Craig
On May 23, 2013, at 10:28 AM, Jakob Bohm wrote:
> On 5/23/2013 6:21 PM, Cr
onnection issue ?
The CURL logs are below but altered for privacy reasons.
Thanks
-Craig
*Key blocked response*
* About to connect() to <http://www.ipg-online.com> port 443 (#96)
* Trying XX
* Connected to XX (X) port 443 (#96)
* CAfile: /XXX
appreciated, I can’t find anything very useful
on the web.
Cheers
Neil Craig
Lead Technical Architect | Online Technology Group
[cid:FDC52DA5-F1EC-4ED7-A69C-CACB83B41880]
Broadcast Centre, London W12 7TQ | BC4 A3
Twitter: https://twitter.com/tdp_org
--
openssl-users mailing list
To uns
g that¹s
the right thing to do.
Cheers
Neil Craig
Lead Technical Architect | Online Technology Group
Broadcast Centre, London W12 7TQ | BC4 A3
Twitter: https://twitter.com/tdp_org
On 17/09/2018, 17:41, "openssl-users on behalf of Matt Caswell"
wrote:
>
>
>On 17/09/1
like
it might be a bug? Or am I missing something? There’s nothing obvious in the
output that suggests failure.
Any help would be much appreciated, happy to provide more info and/or do more
testing.
Cheers
Neil Craig
Lead Technical Architect | Online Technology Group
[cid:2EBC98B1-F146-4192
Thanks for the quick reply Matt. I tried -ign_eof but it had no effect,
sadly.
If anyone has any further suggestions, I¹d appreciate it very much as this
is in aid of our automated released testing for TLS1.3 on our production
traffic management service.
Cheers
Neil Craig
Lead Technical
I am, yes. And as I say, it works fine interactively, it¹s just via cron
that it fails.
Neil Craig
Lead Technical Architect | Online Technology Group
Broadcast Centre, London W12 7TQ | BC4 A3
Twitter: https://twitter.com/tdp_org
On 03/01/2019, 11:56, "openssl-users on behalf of Matt Ca
Sorry for the delay.
Jakob - you’re a star! Thanks so much, your suggestion works. So I added
:443 -servername
-tls1_3 sess_out https://twitter.com/tdp_org
On 03/01/2019, 14:52, "openssl-users on behalf of Jakob Bohm via
openssl-users" wrote:
>On 03/01/2019 12:52, Nei
Actually, my apologies, I missed -ign_eof - that is also needed, so the
“fixed” request is:
/path/to/openssl s_client -connect :443 -servername
-tls1_3 sess_out -ign_eof https://twitter.com/tdp_org
On 04/01/2019, 10:58, "Neil Craig" wrote:
>Sorry for the delay.
>
>Ja
or each
certificate.
Thanks for any help available.
Craig.
--
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Au
is when this certificate is imported to IE the extension shows up, but
the data is interpreted as an OctetString and not two GeneratlizedTimes...
Craig.
El hallabi-Kettani Abderrahmane wrote:
--- Craig Gleadall <[EMAIL PROTECTED]> a écrit :
Hello,
I am trying to get my CA to issue
calling 'openssl req' or 'openssl ca'
Craig.
Dr. Stephen Henson wrote:
On Thu, Aug 05, 2004, Craig Gleadall wrote:
Abdou,
The 04:20 is teh DER encoding for an OctetString that is 0x20 bytes long.
What I would have expected to happen was my Sequence to be place right
after the
the certs into the
Windows store. It sounds like the same issue.
Hope I was helpful.
Craig.
Liam Escario wrote:
I'm having problems importing my OpennSSL certificates to my
keystore. I created my root certificate in cacert.pem and I'm trying
to import this now to my keystore.
okay.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
you should probably use sysread in the perl, and youre missing
Content-Length headers at both ends. Just what i noticed from a quick
glance, you'd probably be better off using the perl CGI modules too.
Thanks,
Craig
Jayadev sadineni wrote:
lp would be GREATLY appreciated.
Thanks,
Craig
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
OCSP request with the Acceptable Response Format extension
I don't see any way to do this via the openssl ocsp utility? Any ideas how any
of these test cases might be accomplished?
Thanks,
Craig
__
OpenS
, Allman RSA
4 424 414 3/3/84 Hellman, Pohlig Pohlig-Hellman
4 995 082 2/19/91 Schnorr Schnorr signatures
Source: p604, "Applied Cryptograhy", Second Edition, Bruce Schneier
Regards,
Craig Southeren
---
> OpenSSL Project http://www.openssl.org
> User Support Mailing List[EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
--
C
to the list.
>
> Merton Campbell Crockett
>
> __
> OpenSSL Project http://www.openssl.org
> User Support Mailing List[EMAIL PROTECTED]
> Automated List Manager
>
> __
> OpenSSL Project http://www.openssl.org
> User Support Mailing List[EMAIL PROTECTED]
> Automated List Manager
informations
> collect2: ld returned 8 exit status
> make: 1254-004 last command error is 1¡£
>
>
> stop.
> %
> The file x509.c is just in open ssl .Some subroutines ,for example
> X509_PURPOSE_get0,are in x509v3.h. why can not link it?
> Give me some advice.Thanks.
>
httpsd.ep] Error 1
> make[2]: Leaving directory `/usr/local/src/apache_1.3.12/src'
> make[1]: *** [build-std] Error 2
> make[1]: Leaving directory `/usr/local/src/apache_1.3.12'
> make: *** [build] Error 2
>
> how can I manage?
--
Craig Shaver, Productivity Group
POB 60
___
> OpenSSL Project http://www.openssl.org
> User Support Mailing List[EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
--
Craig Shaver, Productivity Group
POB 60458 Sunn
Hi all,
I've got the free Borland C++ 5.5 compiler but I can't compile the
source on Win98. Has anybody got already compiled Win32 binaries (or a
complete setup) that I could download?
P.S. I'm not a C programmer so I have no hope in figuring out how to
compile it myself
after running make i get a fatal error i ran make
report after make and make test they are to follow. I'm not sure if i
should just attempt to install it and see what happens or if i should hold
off. SCO OpenServer 5.0.5 CC compiler
i ran ./config --prefix=/usr/local
--openssldir=/usr/lo
for input and
output)?
Thanks,
Craig
__
Do you Yahoo!?
The New Yahoo! Shopping - with improved product search
http://shopping.yahoo.com
__
OpenSSL Project http
this something I should be worried about, or is it benign?
Regards,
Craig Southeren
---
Equivalence - home of FireDoor, MibMaster & PhonePatch
Email: [EMAIL PROTECTED]
Web: http://www.equival.com.au
Fax: +61 2 4368 1395Voi
kes it available to anyone who can hack into SSL server. Putting it at
arms length, whilst not necessarily more secure in an absolute sense,
extends the time it will take for someone to crack the connection, which
increases the likelihood that you will catch them before they succeed.
Regards,
Craig Wooster
Manager of System Administration
BroadRiver Communications
(678) 566-1190
winmail.dat
I know it's obvious, but check your path. It may be finding a non-debug
version of the code. I'd use "Find File" and delete any extra copies that
may be on the disk. I hate to admit it, but this has been my problem more
then once. Just a thought...
-Craig
-Original Mes
l lines in the do_* batch file then debugging symbols will
be
compiled in.
There's no mk1mk.pl lines, so I'm sure this is a typo of mk1mf.pl?
Thanks
--
Craig Davison
SecurityFocus
(403) 213-3939 ext. 228
__
sion under MSVC6
(but I don't think that it has anything to do with this problem). It is on
crypto/bio/b_print.c line 112
#define LLONG long long
The compiler does not like long long.
Regards,
Craig
__
d to write
one?
Thanks!
Craig
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
perl
and openssl on apache. I got results for mod and perl but not just
mod_perl.
--
Craig Shaver, Productivity Group
POB 60458 Sunnyvale, CA 94088 (650)390-0654
http://www.progroup.com/ mailto:[EMAIL PROTECTED]
ypted.)
--
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
[_X_X_X_X_X_X_X_X_X_X_X_X_X_X_X_X_X_X_X_X_X_X_X_X_X_X_X_]
Craig Lewis 505 277 6068 [EMAIL PROTECTED]
UNIVERSITY OF NEW MEXICO MATHEMATICS AND STATISTICS
COMPUTER SYSTEMS SUPPORT
Humanities Building Office 415
Albuquerque, NM
ks in advance,
Craig Foreacre
Application Developer/Knowledge Content System Manager
2090 Child St
Naval Hospital Jacksonville
Jacksonville, FL 32214
904.542.9100
This electronic mail and any attachments may contain information that is
subject to the Privacy Act of 1974 and the H
48 matches
Mail list logo
