Still no good.
Let's recap what I have done to generate the certificates. Maybe I'm
doing something wrong there. Im using the CA.sh script under
openssl/apps to generate the certificates.
1) Generate new CA files using "CA.sh -newca". This generates CA
certificate cacert.pem and CA key
On Mon, Mar 27, 2000 at 06:36:32PM +1000, Douglas Lee wrote:
2) Generate new CR file using "CA.sh -newreq". This generates the file
certificate request file newreq.pem.
And the private key in newkey.pem.
3) Sign the CR file using the CA file by "CA.sh -sign". This generates
the certificate
Richard Dr Henson,
Thanks for the useful info!
Evan
begin:vcard
n:Carew;Evan
tel;work:(313) 859-9691
x-mozilla-html:TRUE
url:http://home.msen.com/~carew
adr:;;
version:2.1
email;internet:[EMAIL PROTECTED]
x-mozilla-cpt:;0
fn:Evan Carew
end:vcard
I hope this message may not be a spam, but I have
read similar message before.
I know that for ca's cert, it is a MIME type with
application/x509-ca-cert.
Now, my question is how to send others' and web's
cert?Is x509-people-cert and x509-site-cert, or
something like that?
Anyone
See below...
Douglas Lee wrote:
2) Generate new CR file using "CA.sh -newreq". This generates the file
certificate request file newreq.pem.
It also generates a new private key in privkey.pem
3) Sign the CR file using the CA file by "CA.sh -sign". This generates
the certificate file
Douglas Lee wrote:
Still no good.
Sounds like you followed the steps correctly, but that your server still can't
find the private key needed to use the cert. Did you concatenate newreq.pem
onto newcert.pem? Doing so puts both the cert and the key in the same file,
which you can pass to both
Bodo, that worked, thanks for your help.
Bodo Moeller wrote:
Bob Ollila [EMAIL PROTECTED]:
I'm getting a memory leak in an application that uses openssl 9.4.
The leak occurs on calls to ERR_load_ERR_strings() and
ERR_load_crypto_strings(). Is there a corresponding call that needs
to
... not enough entropy. That makes things like this not very
possible:
while(RAND_egd() == -1)
;
I know that it might be an ugly hack, but it has to be considered...
--
Richard Levitte \ Spannvägen 38, II \ [EMAIL PROTECTED]
Chairman@Stacken \ S-168 35 BROMMA \
Hi there,
At 01:49 PM 3/23/00 +, you wrote:
Bob Ollila wrote:
Steve, thanks for your help, but I think I need a little more
detail/clarification. The standard build of openssl includes the /MD flag,
so I assume that the libs that were built were the multithreaded libs?
Does my
Hi,
Either I've got something wrong or there's a big problem here.
I create new objects with OBJ_create, giving their OID as an argument
and getting back an NID.
Then I convert some data that is the DER encoding of an OID to an
ASN1_OBJECT.
I then call OBJ_obj2nid, expecting to get back the
May I suggest that such comments includes the string "FIXME:", so it
might be easier to grep for?
bodo Index: s3_srvr.c
bodo ===
bodo RCS file: /e/openssl/cvs/openssl/ssl/s3_srvr.c,v
bodo retrieving revision 1.45
bodo
Thanks for replying,
I've attached the output of your suggestions.
dave
[dpalaiti@molybdenum RsaKeon]$ openssl crl -inform DER -in KeonCrl2.der -text
unable to load CRL
1350:error:0D0A4008:asn1 encoding routines:d2i_X509_CRL_INFO:asn1 length
mismatch:x_crl.c:208:address=135266204 offset=86
I am trying to build OpenSSL 0.9.5 (and today's 2327 snapshot) on
Windows NT4 SP6a using the free Borland C++ 5.5 command-line tools.
Building fails at the earliest possible stage:
D:\lib\cpp\opensslmake -f bcb.mak
copy .\crypto\buildinf.h tmp32
Thanks. I'm comparing to a CRL I have and which works, and what I
find that looks weird is this part:
75:d=2 hl=2 l= 13 prim: UTCTIME :000323230800Z
90:d=2 hl=2 l= 13 prim: UTCTIME :000324230800Z
* 105:d=2 hl=2 l= 19 cons: cont [ 0 ]
107:d=3
: On Tue, 28 Mar 2000 01:50:31 +0200, Richard Levitte - VMS Whacker wrote:
If you look at the output you showed above, it looks like make does
not filter them. So, the remaining conclusion is that BC++ itself
does it...
"Manually" typing in exactly what MAKE shows results in a successful
Tugrul Bingol wrote:
Could anyone run demo programs succesfully? If so, can you give me a
pointer? Thanks.
Yes, I've run the demos successfully. I may have had to modify them slightly,
I don't recall. But I have code very similar to the demos that I've added
other features to like mutual
Dave wrote:
bash% openssl crl -inform DER -in keon2.crl -text
unable to load CRL
6062 error:0DA4008:asn1 encoding routines, etc. etc. etc.
Does anyone have any experience using Keon CRL's with OpenSSL ?
Is the crl base64 encoded? If so, leave out the -inform DER option.
I know, I know,
17 matches
Mail list logo
