Hello!
Is it possible to add some new purpose to the
alredy created certificate request by using only command tools of
openssl???
For example Certificate purpose CodeSigning with
OID= 1.3.6.1.5.5.7.3.3
I hope somebody can help
me?
Hi all,
Perhaps someone noticed this:
When I create a certificate there is difference
between system (OS) time and creation time of certificate.
Approximately one hour.
certificate info:
Validity
Not Before: Sep 14 09:57:24 2001 GMT
Not After : Sep 13 09:57:24 2006 GMT
Averroes wrote:
Hi all,
Perhaps someone noticed this:
When I create a certificate there is difference
between system (OS) time and creation time of certificate.
Approximately one hour.
certificate info:
Validity
Not Before: Sep 14 09:57:24 2001 GMT
Not
On Fri, 14 Sep 2001, Averroes wrote:
Hi all,
Perhaps someone noticed this:
When I create a certificate there is difference
between system (OS) time and creation time of certificate.
Approximately one hour.
certificate info:
Validity
Not Before: Sep 14 09:57:24 2001 GMT
-Original Message-
From: Averroes [mailto:[EMAIL PROTECTED]]
Sent: 14 September 2001 10:03
To: [EMAIL PROTECTED]
Subject: Time Diff?
Hi all,
Perhaps someone noticed this:
When I create a certificate there is difference
between system (OS) time and creation time of certificate.
Ooops...
Sorry, Sorry!!!
zhu qun-ying wrote:
Averroes wrote:
Hi all,
Perhaps someone noticed this:
When I create a certificate there is difference
between system (OS) time and creation time of certificate.
Approximately one hour.
certificate info:
Validity
On Fri, Sep 14, 2001 at 11:03:20AM +0200, Averroes wrote:
Hi all,
Perhaps someone noticed this:
When I create a certificate there is difference
between system (OS) time and creation time of certificate.
Approximately one hour.
certificate info:
Validity
Not Before: Sep
-Original Message-
From: Eric Rescorla [mailto:[EMAIL PROTECTED]]
Sent: 14 September 2001 02:22
To: [EMAIL PROTECTED]
Subject: Re: Export laws
Michael Sierchio [EMAIL PROTECTED] writes:
The code was simply reverse-engineered. It's a small, simple
piece of code. Reverse-engineering
Michael Sierchio wrote:
Götz Babin-Ebell wrote:
Don't underestimate XOR.
With a good random source and a secure way to seperate
key and data it is one of the best crypt algorithms available.
XOR only permits N-of-N threshold schemes, not K-of-N with
K N.
But that is exacly that
Title: ??: How to load a P12 certificate?
Dear
Yong Yue
It is
you again that helps me :D Thousand thanks.
But
could you please direct me to a documentation about this
codes?
So
that I could understand it more :)
Thousand thanks again for your
kindness
Wish
you all the best
Best
I apologize for what I'm sure is a basic
question. I'm trying to automate a testing script
that accesses an https:// site under Windows NT
using ActivePerl. I've have the latest version
of ActiverPerl and to my knowledge the latest
version of openssl (openssl-engine-0.9.6b). I've
Dear all,
I am terribly sorry for keep spamming you with these questions. I am too
fresh and too new to OpenSSL cryptography, and wishing desperately for some
documents (I have looked at the SSLeay Documentation) or some information on
this useful technology.
I really appreciate
On Wed, Aug 29, 2001 at 03:57:07PM +0200, Peter Sommerlad wrote:
How do I ensure browsers with both export grade and non-export grade
ciphers connect using stronger encryption? Or is that done
automatically today?
Yes, this should always happen automatically. The client presents its
list
On Fri, Sep 07, 2001 at 11:06:06AM +0300, Andrew Popov wrote:
We need to set timeout on SSL_accept()
Seting with SSL_CTX_set_timeout(SSL_CTX *ctx, long t) has no effect
No, this function is not about connection timeouts (it is about the
session cache).
To impose a timeout on SSL_accept, use
Bodo Moeller [EMAIL PROTECTED] writes:
On Fri, Sep 07, 2001 at 11:06:06AM +0300, Andrew Popov wrote:
We need to set timeout on SSL_accept()
Seting with SSL_CTX_set_timeout(SSL_CTX *ctx, long t) has no effect
No, this function is not about connection timeouts (it is about the
session
Hi
What's the difference between PEM_read_bio_X509 and PEM_read_bio_X509_AUX?
Yiqiang
- Original Message -
From: Dr S N Henson [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, September 13, 2001 9:57 PM
Subject: Re: PEM_read_bio_X509
Ajay Nerurkar wrote:
Can
First I am sorry to use the mailing list for this, but in this case Im
making an exception to my no spam type postings... please forgive me.
Please also foward this info to everyone you know !
Friday Night at 7:00 p.m. step out your door,
Missing file wincrypt.h when compiling version 0.9.6a and 0.9.6b using VC
on file .\crypto\rand\rand_win.c
Any help?
Luiz Filipe
__
OpenSSL Project http://www.openssl.org
User Support Mailing
Title: RE: Can't -verify Global Server ID certs from Verisign
Steve,
Thanks so much, this did the trick. A small thing, but had us stymied.
Appreciate your help,
Dan
-Original Message-
From: Dr S N Henson [mailto:[EMAIL PROTECTED]]
Sent: Thursday, September 13, 2001 11:20 AM
To:
The PC Doctor wrote:
This is innappropriate for this group. I resent it, and I am against
it.
--
I support peace and justice for everyone, not just for those on my own
side. What say we get rid of the sides and just do the arithmetic for
peace and justice?
Hello,
My company is setting up a B2Bi integration network. As an optional part of
this, we would like to use x509 certificate based client and server
authentication.
We found out that the typical server certificates we and our clients buy
from Verisign have a specified purpose of 'SSL Server'.
Ding Yiqiang wrote:
Hi
What's the difference between PEM_read_bio_X509 and PEM_read_bio_X509_AUX?
X509 is a the traditional PEM format which is just a base64 DER encoded
structure with header and footer lines. X509_AUX is a trusted
certificate format, unique to OpenSSL, which allows an
Hi Folks,
I am trying to install mailman software and it keeps asking libssl.so.0.9.6.
Can someone please tell me where I can find this? I thought openssll will do
the trick but to no avail.
TIA
PS: Please send answer directly to me as I have not subscribed to the group.
--
Nalinda
Sumit Bandyopadhyay wrote:
How do people solve the issue of mutual certificate based authentication?
Have different certs, with different keypairs, for different purposes.
__
OpenSSL Project
Hello -
Advice or a reference for compilation instruction are very much appreciated.
I downloaded a patch from the sendmail page: starttls.tar.gz, added it to
teh apps directory of openssl.0.9.6a, applied the patch in it, then
attempted to recompile OpenSSL. However, I receive this error:
gcc
Screw the latest versions...
I fixed this by downgrading to:
Crypt-SSLeay-0.22
and libwww-perl-5.51
For Solaris 2.7 perl 5.6.1 and for Linux RedHat 6.2 perl 5.005_03
What a complete waste of 2 days.
- George
-Original Message-
From: Joshua Chamas [mailto:[EMAIL PROTECTED]]
Sent:
SC ChangeCipherSpec
seems to be taking the longest time in the SSL
transactions. Is there a reason for this?
Pls CC me,
thanks,
vijo.
=
I am a friend of http://www.find-life.com
__
Terrorist Attacks on U.S. - How can you help?
Donate cash,
I bet that I make more money in the Web design business than you do.
From the customers I received last month I made $1560 income.
I also profited on these people $1000 up front.
And you know the funniest part?
I didn't even design their sites!
They did it for themselves!
I bet your sales pitch
Aslam [EMAIL PROTECTED] writes:
I have a general question about :
If while in ssl/tls handshake, one encounters an error, whether to send
alert that time only or let the handshake get complete and then send an
alert to the peer for closing the session..
Consider server authentication
My apologies for posting that large attachment to the list.
It was meant to be an offlist reply.
( I'm not sure why it wasn't - but I'll try and ensure that I get it right
in future.)
Cheers,
Rob
__
OpenSSL Project
Hello from the Teddy Bears Den,
We were just writing to tell you about our free Teddy Bear Screen Saver. You can
download it at:
http://www.teddybearsden.com/screensaver/installden.exe
or just visit our site to learn more about the art of making your own bears.
We hope this email wasn't an
Hello all,
I have a question I need some guidance on.
I have built this app using OpenSSL for transport and a protocol of my
design to transfer the data it is similar to HTTP. Any way at the moment I
am running it over port 1977. However, in most networks this port is going
to
[EMAIL PROTECTED] wrote:
Hey, what is it with you people today? Can't you keep enough sense to
stay out of the professional groups? Go harass the porn fans or
something. I'm having a hard enough time keeping up with the technical
stuff I have to read!
This message uses a character set
Hi,
I don't think LWP supports 'https' protocol. Note that '$req' is a
'HTTP::Request' (not 'HTTPS::Request) object.
You'll need to install 'Net::SSLeay' or 'Crypt::SSLeay' modules.
Cheers,
Rob
- Original Message -
From: Andy Donaldson [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent:
Sumit Bandyopadhyay wrote:
Hello,
My company is setting up a B2Bi integration network. As an optional part of
this, we would like to use x509 certificate based client and server
authentication.
We found out that the typical server certificates we and our clients buy
from Verisign have
I'm trying to connect to a site that wants the full certificate chain.
Connecting from the command line works perfectly.
Using the code fragment below gives an error when I try to read the first
packet (using receiveData, which just sits in a loop), and the server
indicates that I have a BAD
36 matches
Mail list logo
