-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Windows Updates is also incompatible with ECDSA due to akamai behind. :)
20.06.2016 17:19, Yuri Voinov пишет:
>
> akamaihd.net has compatibility issues with ECDSA squid's certs. fb.com
behind it, etc.
>
> 20.06.2016 0:10, Yuri Voinov пишет:
>
>
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
akamaihd.net has compatibility issues with ECDSA squid's certs. fb.com
behind it, etc.
20.06.2016 0:10, Yuri Voinov пишет:
>
> ECDSA works with any combination with RSA in CA-subordinate CA's.
>
> Will check compatibility issues, if any.
>
> 19.06
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
ECDSA works with any combination with RSA in CA-subordinate CA's.
Will check compatibility issues, if any.
19.06.2016 17:40, Amos Jeffries пишет:
> On 19/06/2016 10:17 p.m., Yuri wrote:
>> Must be:
>>
>> openssl ecparam -name secp384r1 -genkey -p
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Cert generator is ok.
Bug 4497 still not gone. So, it is irrelevant ECDSA. Sad.
19.06.2016 15:18, Amos Jeffries пишет:
> On 19/06/2016 12:42 a.m., Yuri Voinov wrote:
>>
>> Good weekend to all.
>>
>> Gentlemen, somebody played with ECDSA-certific
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
19.06.2016 17:40, Amos Jeffries пишет:
> On 19/06/2016 10:17 p.m., Yuri wrote:
>> Must be:
>>
>> openssl ecparam -name secp384r1 -genkey -param_enc named_curve -out
>> rootCA.key
>>
>> :)
>>
>> I.e. -param_enc can't be default, named_curve argume
On 19/06/2016 10:17 p.m., Yuri wrote:
> Must be:
>
> openssl ecparam -name secp384r1 -genkey -param_enc named_curve -out
> rootCA.key
>
> :)
>
> I.e. -param_enc can't be default, named_curve argument required :)
>
Aha.
Is it working for you now? or do we still have to alter the cert
generator
Must be:
openssl ecparam -name secp384r1 -genkey -param_enc named_curve -out
rootCA.key
:)
I.e. -param_enc can't be default, named_curve argument required :)
19.06.2016 15:18, Amos Jeffries пишет:
On 19/06/2016 12:42 a.m., Yuri Voinov wrote:
Good weekend to all.
Gentlemen, somebody playe
Aa, found my mistake. :)
Stupid openssl manuals. :)
19.06.2016 15:18, Amos Jeffries пишет:
On 19/06/2016 12:42 a.m., Yuri Voinov wrote:
Good weekend to all.
Gentlemen, somebody played with ECDSA-certificates and SSL bump with SQUID?
I have when trying to use ECDSA self-signed CA to
I agree with the diagnosis. However, this manual does not contain
complete answer to the question - as, indeed, add that flag in a
certificate?
Write a program on C? I do not see the command line options or
configuration settings, something related to the ECDSA.
19.06.2016 15:18, Amos Jeffri
That's just the point that everything was done according to the guidelines.
# First create EC parameters for selected curve
openssl ecparam -name secp384r1 -out secp384r1.pem
# Then generate dhparam with this EC params
openssl dhparam -in secp384r1.pem -outform PEM -out dhparam.pem 3072
# root C
On 19/06/2016 12:42 a.m., Yuri Voinov wrote:
>
> Good weekend to all.
>
> Gentlemen, somebody played with ECDSA-certificates and SSL bump with SQUID?
>
> I have when trying to use ECDSA self-signed CA to bump, Squid (version
> no matter) gives an error SSLv3 (for unknown reasons) and can not
> e
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Good weekend to all.
Gentlemen, somebody played with ECDSA-certificates and SSL bump with SQUID?
I have when trying to use ECDSA self-signed CA to bump, Squid (version
no matter) gives an error SSLv3 (for unknown reasons) and can not
establish a
12 matches
Mail list logo
