Openssl command line fails to verify detached smime signature created moments earlier

Hi, I've recently come across a problem verifying detached smime signatures using openssl 1.0.1b on OSX 10.6 and 1.0.1c on cygwin. First I create a DSA key. openssl dsaparam -noout -out privatekey.pem -genkey 1024 Next I create a self-signed certificate from that key. openssl req -new

Re: How to use CAPI engine in OpenSSL 1.0.0a

This is good, how do I specify the Local Computer store and specify a certificate I want to use, for example an ssl certificate in apache Ken __ OpenSSL Project http://www.openssl.org User

Re: Openssl command line fails to verify detached smime signature created moments earlier

I belive the smime and pkcs7 command line tools are badly broken for binary files, which has hurt some of my projects too. On 5/31/2012 9:13 PM, Jonathan Duncan wrote: Hi, I've recently come across a problem verifying detached smime signatures using openssl 1.0.1b on OSX 10.6 and 1.0.1c on

Re: Openssl command line fails to verify detached smime signature created moments earlier

On Thu, May 31, 2012, Jonathan Duncan wrote: Hi, I've recently come across a problem verifying detached smime signatures using openssl 1.0.1b on OSX 10.6 and 1.0.1c on cygwin. First I create a DSA key. openssl dsaparam -noout -out privatekey.pem -genkey 1024 Next I create a

Error code 34?

Hi, Can someone please point me to the meaning of error code 34, as returned by verify? I think the openssl version throwing it was 0.9.8.x, but cannot be entirely sure as I have only the result codes to work with and no further info. I checked the source, 34 seems not mentioned in

Re: Error code 34?

On Fri, Jun 01, 2012, Ralph Holz wrote: Hi, Can someone please point me to the meaning of error code 34, as returned by verify? I think the openssl version throwing it was 0.9.8.x, but cannot be entirely sure as I have only the result codes to work with and no further info. I checked

openssl ca vs openssl x509

Is there a doc somewhere that explains the differences between ca and x509 ? I was signing client side certificates with: openssl ca -passin pass:$ROOTCAPASS -batch -config openssl.cnf -days 365 -keyfile private/root-ca-key.pem -cert root-ca-crt.pem -in person/$1/$1-req.pem -out

Re: openssl ca vs openssl x509

In general, probably look for PKI tutorial; there should be concepts associated with CA, x509 (digital certificate) Erwin On Fri, Jun 1, 2012 at 9:34 AM, Stephen More stephen.m...@gmail.com wrote: Is there a doc somewhere that explains the differences between ca and x509 ? I was signing

peer not authenticated

openssl s_client -showcerts -connect TP.COM:443 http://tp.com:443/ CONNECTED(0003) depth=1 /O=VeriSign Trust Network/OU=VeriSign, Inc./OU=VeriSign International Server CA - Class 3/OU=www.verisign.com/CPS Incorp.by Ref. LIABILITY LTD.(c)97 VeriSign verify error:num=20:unable to get local

subscription administration

I have not been able to find a link to the site I need for changing my subscription options. If possible, I would like to remain subscribed but stop receiving the email messages. I can read them from gmane with a newsreader, and I can send a message on occasion as needed. Thanks. John A.