i dont use s_client(1). i wrote my own server, but if i send to
this server
QUIT then the server exit by themself.
I'm not sure how we can find a problem in code that you wrote yourself and
don't tell us very much about. How exactly are you sending QUIT to the
server?
I am sending ist by
puneet batura wrote:
Hi,
I am trying to generate a 163 bit key in openssl using ECC but was not
been able to do so. I am using openssl-0.9.8a version can anyone show me
a example how to do that?
for example openssl ecparam -name sect163k1 -out eckey.pem -genkey -noout
should work ...
Brad Brock wrote:
Hi, I'am a newbie programmer. I want to learn how to
build an application that communicate over SSL. Can
anyone show me where to find the references? Thank you.
Network Security with OpenSSL by John Viega, Matt Messier and Pravir
Chandra, ISBN 059600270X
Agreed. I
Hi,
For a client that wants a secure channel with a given server, what is
the best way to enforce a lower bound on the RSA key size of
the server certificate?
You can use the SSL_(CTX_)_set_cipher_list() functions to restrict which
ciphers can be used.
Best Regards,
Mark Williams
Hi Nils,
Yes i have tried that but it says that 'ecparam' is not a valid argument.i am using openssl-0.9.8aversion. Is this supported for this version or i have to go with some other version.
Thanks!
On 5/11/06, Nils Larsch [EMAIL PROTECTED] wrote:
puneet batura wrote: Hi, I am trying to
puneet batura wrote:
Hi,
I am generating a self signed certificate for my application using rsa
but i want to generate the certificate using ecc. This is what i am doing:
openssl genrsa -out MilitaryGpsKey.pem 2048
openssl req -new -x509 -key MilitaryGpsKey.pem -out
MilitaryGpsCert.pem
If a client crash (exit without deinitialize the
connection) then i get following output on my OPENSSL Server:
recv: Connection reset by peer
this seems to come automaticaly from openssl but i
want to catch this error! Is there any way for it?
Regards Stefan
Hi all,
Here is a good link about block cipher algorithm that explains this.
It also explain the mode: ECB, EFB, OFB, CBC (in SSL/TLS CBC one is used)
http://www.cacr.math.uwaterloo.ca/hac/
Chapter 7 - Block Ciphers
regards,
Fred
-Original Message-
From: Michael Sierchio
On Thu, May 11, 2006 at 09:30:16AM +0100, Mark wrote:
Hi,
For a client that wants a secure channel with a given server, what is
the best way to enforce a lower bound on the RSA key size of
the server certificate?
You can use the SSL_(CTX_)_set_cipher_list() functions to restrict
I want to generate a simple OCSP request. What are the steps I must follow using OpenSSL? Thank you for your help.__Do You Yahoo!?Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
On May 10, 2006, at 11:05 PM, Stefan Walter wrote:
i dont use s_client(1). i wrote my own server, but if i send to
this server
QUIT then the server exit by themself.
I'm not sure how we can find a problem in code that you wrote
yourself and
don't tell us very much about. How exactly are
Hello,
On May 10, 2006, at 11:05 PM, Stefan Walter wrote:
i dont use s_client(1). i wrote my own server, but if i send to
this server
QUIT then the server exit by themself.
I'm not sure how we can find a problem in code that you wrote
yourself and
don't tell us very much
Same here. It got me running within an hour. It is a great book and
probably the only book you will need for openssl.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Heikki Toivonen
Sent: Wednesday, May 10, 2006 11:09 PM
To: openssl-users@openssl.org
Chris,
I was able to use binaries you provided also create my own set this
time. Here's the output of the test.bat. Looks like it passed all tests.
I ran in on 64 bit Win 2003 Server R2.
One thing I'm still struggling with is that I can't build the static
libs for the 64 bit, can you?
Thanks,
On 5/11/06, Luc Perthuis [EMAIL PROTECTED] wrote:
puneet batura wrote: Hi, I am generating a self signed certificate for my application using rsa but i want to generate the certificate using ecc. This is what i am doing: openssl genrsa -out
MilitaryGpsKey.pem 2048 openssl req -new -x509 -key
On Thu, May 11, 2006 at 11:19:08PM +0530, puneet batura wrote:
I am using the same version :
openssl version
OpenSSL 0.9.8a 11 Oct 2005
For a list of usable curves, just do :
openssl ecparam -list_curves
When i ry to run the above command i get:
[EMAIL PROTECTED] bin]# openssl
I would like to know your opinions on commercial hardware random number
generators. Are they worth the money? How do they compare to the
/dev/random device? Thnx.
__
OpenSSL Project
Wai Wu wrote:
I would like to know your opinions on commercial hardware random number
generators. Are they worth the money? How do they compare to the
/dev/random device? Thnx.
I've written extensively about this elsewhere. The devices are properly
termed RBGs (random bit generators), and
I would expect the
following:
openssl x509 -modulus -noout -in mycert.crt
-out mymod.txt
to output the modulus to the specified
"out" file just like all other x509 commands with -out specified. It does
not. Anybody know how to get the modulus sent to a file?
openssl x509 -modulus -noout
On 5/11/06, Victor Duchovni [EMAIL PROTECTED] wrote:
On Thu, May 11, 2006 at 11:19:08PM +0530, puneet batura wrote: I am using the same version : openssl version OpenSSL 0.9.8a 11 Oct 2005 For a list of usable curves, just do :
openssl ecparam -list_curves When i ry to run the above command i
On Fri, May 12, 2006 at 01:23:23AM +0530, puneet batura wrote:
On 5/11/06, Victor Duchovni [EMAIL PROTECTED] wrote:
On Thu, May 11, 2006 at 11:19:08PM +0530, puneet batura wrote:
I am using the same version :
openssl version
OpenSSL 0.9.8a 11 Oct 2005
For a list of usable
On 5/12/06, Victor Duchovni [EMAIL PROTECTED] wrote:
On Fri, May 12, 2006 at 01:23:23AM +0530, puneet batura wrote: On 5/11/06, Victor Duchovni [EMAIL PROTECTED] wrote:
On Thu, May 11, 2006 at 11:19:08PM +0530, puneet batura wrote: I am using the same version :openssl version OpenSSL
On Thursday 11 May 2006 23:38 pm, John Pattern wrote:
I want to generate a simple OCSP request. What are the steps I must
follow using OpenSSL? Thank you for your help.
There is an openssl tool to do so - see:
http://www.openssl.org/docs/apps/ocsp.html
There is some detail, and a test server at
puneet batura wrote:
Hi Nils,
Yes i have tried that but it says that 'ecparam' is not a valid
argument.i am using openssl-0.9.8a version. Is this supported for this
version or i have to go with some other version.
it should be supported in 0.9.8a but perhaps it has been disabled
in your
Thanks. I will take a look at ocsp.c.Brad Hards [EMAIL PROTECTED] wrote: On Thursday 11 May 2006 23:38 pm, John Pattern wrote: I want to generate a simple OCSP request. What are the steps I must follow using OpenSSL? Thank you for your help.There is an openssl tool to do so -
I am looking for a portable way to compare the cipher of a session in
the external cache with the cipherlist of an embryonic SSL object.
Sessions in the external cache are essentially keyed by the target IP
and port, and multiple logical destinations (email receiving domains)
may be served by
On Thu, May 11, 2006 at 07:54:26PM -0400, Victor Duchovni wrote:
Is there a way to filter out incompatible sessions via published APIs?
Are new published APIs to allow cipher id comparisons like to materialize
in the future?
Right now, I may have to build the cipherlist spec into the
Steve is usually around, but I'm not sure he has the time to look into
all the complex questions. Unfortunately, I don't know the guts nor
future development well enough to be able to answer your question.
If you would like to request the ability to get that information in a
stable, supported
On 5/11/06, Parind Shah [EMAIL PROTECTED] wrote:
Chris,
I was able to use binaries you provided also create my own set this
time. Here's the output of the test.bat. Looks like it passed all tests.
I ran in on 64 bit Win 2003 Server R2.
One thing I'm still struggling with is that I can't build
Hi Nils,This is my opensslconf.h file:/* opensslconf.h *//* WARNING: Generated automatically from opensslconf.h.in by Configure. *//* OpenSSL was configured with the following options: */
#ifndef OPENSSL_DOING_MAKEDEPEND#ifndef OPENSSL_NO_GMP# define OPENSSL_NO_GMP#endif#ifndef OPENSSL_NO_KRB5#
On 5/12/06, hunter [EMAIL PROTECTED] wrote:
On 5/11/06, Parind Shah [EMAIL PROTECTED] wrote:
Chris,
I was able to use binaries you provided also create my own set this
time. Here's the output of the test.bat. Looks like it passed all tests.
I ran in on 64 bit Win 2003 Server R2.
One
Hi,
Where can I find information about what commercial product has used
openSSL(e.g., Microsoft, BEA, IBM, Oracle)? Thank you!
Best Regards,
Xie, Bo
__
OpenSSL Project http://www.openssl.org
User
32 matches
Mail list logo