Hi.
Thanks for the reply.
Your expertise is clearly better than mine, and your help is much appreciated.
Im sorry for removing some sensitive information, but it is company policy.
SFTP Server is using maverick sshd library (java based).
Wireshark Output:
Following is Packet no. 264
On 04/27/12 02:29 AM, Dr. Stephen Henson wrote:
Hmm never seen any error messages myself, using GNU tar 1.25.
The distribution tarballs are always created by doing:
make -f Makefile.org dist
from any source tree. As you can see from the files this makes use of tar
and tardy. The tar version
Hello Steve,
On 26.04.2012 15:50, Dr. Stephen Henson wrote:
What DH parameters are you using? You can get better performance by tweaking
the parameters.
Can you explain how to tweak the parameters and if this reduces security.
Thanks
Dirk
On Fri, Apr 27, 2012, Dirk Menstermann wrote:
Hello Steve,
On 26.04.2012 15:50, Dr. Stephen Henson wrote:
What DH parameters are you using? You can get better performance by tweaking
the parameters.
Can you explain how to tweak the parameters and if this reduces security.
By
Thanks for all answers.
This is what i understood and found out:
If we want to use perfect forward secrecy, we have to compute DH
parameters. When enabling kEDH, most of our clients will use DHE_RSA
which seems to be rather slow on our front-end. Disabling kEDH
switches most clients to not use
Classification: Public
Hello fellow OpenSSL users,
I am interacting with the CAPI engine of OpenSSL and I was already able to
create a CSR from a private key stored in the windows keystore.
Now here is what I want to do:
- Generate new KeyPair
- Generate CSR of this KeyPair
- Import the
On Fri, Apr 27, 2012, Jack Bauer wrote:
Currently I don't know, if the type of DH parameters can be configured
in nginx. But I will investigate ..
If there is a file which contains DH parameters then this should work. Check
to see the DH parameters file isn't something silly like 4096
On Fri, Apr 27, 2012 at 2:29 PM, Jack Bauer mlsubscri...@gmail.com wrote:
Currently I don't know, if the type of DH parameters can be configured
in nginx. But I will investigate ..
The only solution (for us, at the moment) seems to be to keep kEDH
enabled and hope, that most browsers will
On Fri, Apr 27, 2012, Florian Ruechel wrote:
Classification: Public
Hello fellow OpenSSL users,
I am interacting with the CAPI engine of OpenSSL and I was already able to
create a CSR from a private key stored in the windows keystore.
Now here is what I want to do:
- Generate new
On Fri, Apr 27, 2012, Dr. David Kirkby wrote:
On 04/27/12 02:29 AM, Dr. Stephen Henson wrote:
Hmm never seen any error messages myself, using GNU tar 1.25.
The distribution tarballs are always created by doing:
make -f Makefile.org dist
from any source tree. As you can see from the
We have an Apache 2.2.22/OpenSSL 1.0.1 CAC-enabled website running on Windows
(XP for development and 2003 for production). We have been experiencing issues
with users with Windows 7 being able to connect lately. In an effort to
understand what is going on, we added %{SSL_PROTOCOL}x
Dr. Henson, (and the rest of the list)- I'm still having problems getting my
server to renegotiate correctly. I'll describe the basic scenario again and
how I'm handling it, then ask some questions. Again, I'm running 0.9.8r 1. My
server is sending a large amount of data to the peer, so
On Fri, Apr 27, 2012, Dr. Stephen Henson wrote:
Hmm... the puzzle continues. The versions of tar and tardy match those on the
OpenSSL development machine and have tghe same default but those seem fine
with the version of tar on Solaris whereas those produced on my setup (Ubuntu
11.10) produce
I will be out of the office starting 04/27/2012 and will not return until
05/07/2012.
I will be out of the office until May 7th. If you have any questions please
send them to Charles Wittmaier.
Thanks and have a great vacation week :)
Brad
Hi,
I use a 64-bit MinGW (gcc-4.7.0) compiler on Windows Vista64.
=
Issue 1
=
Having run configure, make croaks with undefined references to `rc4_md5_enc'
in libcrypto.a.
I can find the rc4_md5_enc prototype in
openssl-1.0.1b\crypto\evp\e_rc4_hmac_md5.c
but that's all. How does one
15 matches
Mail list logo