and how do I generate an ECDSA certificate?
To generate a selfsigned ECDSA cert the same ways you do RSA,
except use EC instead of RSA.
- use req -new with EC key or -newkey with EC parms and -x509
to generate selfsigned cert directly.
- use req -new with key or -newkey to generate CSR,
then
I use the src rpm downloaded from
http://koji.fedoraproject.org/koji/buildinfo?buildID=551423 .
Inquired about this issue with one of the package maintainers from
koji.fedoraproject.org and following was his comment.
Apparently the Known answer test for RSA X9.31 signatures
does not match
Viktor,
Despite being a protocol violation, it is accepted by the OpenSSL's server
implementation.
But I do see now that this is indeed covered by RFC 5246. Sorry, I have
missed that line in
the Client Certificate section.
On Wed, Aug 13, 2014 at 1:48 AM, Salz, Rich rs...@akamai.com wrote:
how to send multiple handshake message
On Wed, Aug 13, 2014, Abdul Anshad wrote:
I use the src rpm downloaded from
http://koji.fedoraproject.org/koji/buildinfo?buildID=551423 .
Inquired about this issue with one of the package maintainers from
koji.fedoraproject.org and following was his comment.
Apparently the Known answer
The official version of OpenSSL works fine when compiled against the
upstream FIPS module.
Yes, It's distribution specific and reverting the file fixed the issue.
Thanks for your time.
Regards,
Abdul
On 13-Aug-14 7:02 PM, Dr. Stephen Henson wrote:
On Wed, Aug 13, 2014, Abdul Anshad wrote:
Is anyone willing to step up and maintain the Netware port?
If not, then we will probably remove it after the next release.
/r$
--
Principal Security Engineer
Akamai Technologies, Cambridge MA
IM: rs...@jabber.memailto:rs...@jabber.me Twitter: RichSalz
I've been trying to build the latest (1.0.1i) OpenSSL, and I'm having problems
with the self-tests.
The steps I followed were the same steps I used to build a FIPS enabled 1.0.1h.
I built the FIPS object module using the 2.0.6 ecp module without issue. When I
attempt to build the FIPS capable
On Wed, Aug 13, 2014 at 5:19 PM, Jason Schultz jetso...@hotmail.com wrote:
I've been trying to build the latest (1.0.1i) OpenSSL, and I'm having
problems with the self-tests.
...
http://groups.google.com/d/msg/mailing.openssl.users/1PzVX75ic_s/Oba578nnpWIJ
Thank you for the fast reply.
On Aug 13, 2014, at 4:31 PM, Jeffrey Walton noloa...@gmail.com wrote:
On Wed, Aug 13, 2014 at 5:19 PM, Jason Schultz jetso...@hotmail.com wrote:
I've been trying to build the latest (1.0.1i) OpenSSL, and I'm having
problems with the self-tests.
...
I have a SSL proxy server. Intermittently, SSL_read will fail. It's been
very hard for me to get debugging information because it is intermittent,
but I have a core dump now (I used an assert to get the core, the library
did not segfault or anything). This seems to happen even though the
I would recommend using epoll in level triggered mode. Edge triggered
mode is extremely unforgiving. I've used epoll with openssl in level
triggered mode quite extensively and had success with it.
On Mon, Aug 11, 2014 at 8:12 AM, Harikrishnan R
harikrish...@marketsimplified.com wrote:
I
12 matches
Mail list logo
