On 5/13/2015 10:19 AM, Matt Caswell wrote:
On 08/05/15 09:40, Matt Caswell wrote:
On 08/05/15 02:28, Jeffrey Altman wrote:
Regardless, the inability to improve the support in this area has left
the those organizations that rely upon 2712 with the choice of use
insecure protocols or re
there is an implementation in Cyrus/SASL. This is the most
recent version I could find
http://www.opensource.apple.com/source/passwordserver_sasl/passwordserver_sasl-159/cyrus_sasl/doc/draft-burdis-cat-srp-sasl-xx.txt
Jeffrey Altman
smime.p7s
Description: S/MIME Cryptographic Signature
. Or perhaps hold an IETF BOF first to
explore the interest. The last time I was involved the work product was
https://tools.ietf.org/html/draft-santesson-tls-gssapi-03
I still believe that is a reasonable approach.
Jeffrey Altman
smime.p7s
Description: S/MIME Cryptographic Signature
that any sane OS or application vendor can with a straight face continue
to ship 2712 support. As such it should be removed from OpenSSL master.
Jeffrey Altman
smime.p7s
Description: S/MIME Cryptographic Signature
___
openssl-users mailing list
Foundation is *NOT* a 501(c)3. This is described at
http://www.openssl.org/support/donations.html
Jeffrey Altman
smime.p7s
Description: S/MIME Cryptographic Signature
Bobby Krupczak wrote:
Hi!
I'm trying to build a multi-platform application using openssl. I'm
using the win32 ssl libs built by Shining Path. However, those libs
require msvcr71.dll whilst the rest of my apps are compiled such that
they only require msvcr.dll
Since I want my app to run
costs money. Where do you think the user will go first?
The best you can do is try to give end users a message to send back to
the application developer and at the same time attempt to answer their
question or point them at the official distributors and let Thomas
deal with the fallout.
Jeffrey
Thomas J. Hruska wrote:
I'm holding back from a 64-bit build of the Win32(?) OpenSSL installer
for another couple weeks because I need to purchase Visual Studio
Professional 2008 (i.e. I can't use VC++ Express) for various reasons
and my development computer gets unhappy when I install new
Thomas J. Hruska wrote:
I know about the 90 day trial. The VS 2008 install is going to hose
my existing dev. environment. So, I'd rather just hose it once
(install the full thing) than hose it twice (install the trial and
then install the full thing).
I have VS.2003, VS.2005, and VS.2008 all
service. The problem
appears to be that only the Verisign Code Signing CA is now a trust
anchor for validating Authenticode signatures.
It looks like I will have to buy a cert from Verisign when the current
one expires.
Jeffrey Altman
smime.p7s
Description: S/MIME Cryptographic Signature
the GPL's rules, but how
the postgresql client library was compiled isn't neccessarily under
freeradius's control.
Maybe the problem is the GPL rules.
Jeffrey Altman
smime.p7s
Description: S/MIME Cryptographic Signature
Tools?
Jeffrey Altman
smime.p7s
Description: S/MIME Cryptographic Signature
Last month, Peter Runestig [EMAIL PROTECTED] passed away from a heart
attack. Peter was an active participant in the openssl community. He
will be dearly missed by all that knew him.
Jeffrey Altman
smime.p7s
Description: S/MIME Cryptographic Signature
.
Jeffrey Altman
Jason Keltz wrote:
Hi.
I have a question with respect to SSL protocol. Is it part of the
protocol that the SSL server send to the client the public keys for the
CAs making up the certificate chain? or is it acceptable to send just the
server public key and expect the client
between you and
IBM which does not permitted secure FTP sessions.
Jeffrey Altman
Kermit 95 Author
Secure Endpoints Inc
Vasseur, Peter wrote:
Hello.
I am trying to make a secure FTP connection to IBM Information
Exchange from my UNIX machine. I am using C-Kermit 8.0.211, which I
compiled for use
Marton Anka wrote:
Message
Hello,
I
am trying to solve a verypeculiar problem. In my application, there
are three players:
1.
Client - runs a regular web browser.
2.
Proxy - runs my proxy application with OpenSSL 0.9.7c
3.
Host - runs my host application with
if they were to fail.
Jeffrey Altman
smime.p7s
Description: S/MIME Cryptographic Signature
It doesn't. OpenSSL does not use the Microsoft ASN.1 Library.
Mark Foster wrote:
http://www.us-cert.gov/cas/techalerts/TA04-041A.html
Does this affect openssl running on Window'splatforms?
__
OpenSSL Project
I have been linking applications with both OpenSSL and ZLIB for many
years now without difficulties. My guess is that either your app is not
using
the MSVCRT.DLL or that your are linking to some other library which is
using an
alternative C Runtime library.
Jeffrey Altman
Andrew Marlow wrote
This is a different vulnerability. The one you patched two weeks ago
was caused by a failure to decrypt messages when the MAC comparison
failed. This vulnerability is a timing attack against the RSA algorithms.
The Slashdot discussion is here:
PBSZ is used when you are negotiating the size of the buffer to be
encrypted.
If you are using FTP over SSL, the FTP protocol is not performing any
authentication or encryption. Therefore, you do not use PBSZ.
gomess wrote:
It is very unclear to me what type of help you are looking
It is very unclear to me what type of help you are looking for.
There are many SSL/TLS FTP client and server implementations available
as open source in addition to the specifications for the protocol which
are available as an Internet-Draft.
What do you need?
gomess wrote:
C-Kermit 8.0 http://www.kermit-project.org/ckermit.html implements it
for both client and server sides.
- Jeff
Markus Moeller wrote:
Are there any example programs documentations of how to use Openssl with
Kerberos for authentication/encryption (rfc2712) ?
Thank you
Markus
or they do not.
- Jeff
Markus Moeller wrote:
On Tuesday 11 Mar 2003 12:12, Jeffrey Altman wrote:
Jeff,
thanks for the link. The only problem I have now is how to filter out of the
hundred of options the ones related to openssl/kerberos? Also I was
wondering, what you would need to do if you
Are you using the mutex locks with blocking or non-blocking sockets?
Using mutex locks with non-blocking sockets most definitely works.
Folkert van Heusden wrote:
So, my questions are:
- am I doing something and IS openssl threadsafe?
- is there an alternative for openssl doing which
OpenSSH and C-Kermit both perform checks of the version string of the
library versus the version string of the headers the program was
compiled with. This is done to ensure that the OpenSSL header constants
and APIs used to build the program match those in the library.
Both products must be
That is how current versions of the software work. You can of course
hack the code and remove the checks on your system if you would like. I
do not predict what the future may hold.
Phil Howard wrote:
On Thu, Feb 20, 2003 at 06:17:02PM -0500, Jeffrey Altman wrote:
| OpenSSH and C-Kermit
Dr. Stephen Henson wrote:
On Tue, Feb 11, 2003, Thomas Anders wrote:
Hello,
the Kerberos/PKINIT Internet draft
(http://www.ietf.org/internet-drafts/draft-ietf-cat-kerberos-pk-init-16.txt,
chapter 3.2.2.2) requires the KDC certificates to specify Kerberos realm and
principal name
As long as you are on a Windows system that implements WinSock2 all you
need to do is specify
int timeout = 15;
setsockopt(socket, SOL_SOCKET, SO_RCVTIMEO, timeout,
sizeof(int));
This will result in the following behaviors as described in
Can you please elaborate on the algorithm you are using to accept
connections? The SSL_accept() does not take a server socket (the
socket on which the accept() call is performed.) Therefore, I do not
know why the SSL_accept() should block accept() calls unless you are
calling them in sequence
You can use LoadLibrary() to load the DLLs at runtime instead of
linking to them at compile time.
However, if you do this you will need to load each function pointer
programatically.
dan demers wrote:
in the windows environment,
is it possible to use the explicitly
WSAStartup() is required for Winsock 1.x as well.
You should be calling this in your application. It would be
inappropriate for this to be called from OpenSSL.
Peter Aben wrote:
I have used OpenSSL 0.9.6c in our application successfully on various
platforms.
After upgrading to 0.9.6h, on the
Geoff:
Since absolutely no one that is experiencing this problem has looked at
a suffering process in a debugger it is impossible to know what is the
cause of the problem. As far as I can tell all the theories that have
been put forward as to what this is or is not are simply best guesses
Manager [EMAIL PROTECTED]
Jeffrey Altman * Volunteer Developer Kermit 95 2.1 GUI available now!!!
The Kermit Project @ Columbia University SSH, Secure Telnet, Secure FTP, HTTP
http://www.kermit-project.org/Secured with MIT Kerberos, SRP
that is not entirely predictable that ensures the function
cannot be optimized out.
Jeffrey Altman * Volunteer Developer Kermit 95 2.1 GUI available now!!!
The Kermit Project @ Columbia University SSH, Secure Telnet, Secure FTP, HTTP
http://www.kermit-project.org/Secured with MIT
loop = len;
while(loop--) {
*(p++) = foo++;
foo += (17 + (unsigned char)(p 0xF))
}
if(memchr(ptr, foo, len))
foo += 63;
return(foo);
}
Jeffrey Altman * Volunteer Developer Kermit 95 2.1 GUI available now!!!
The Kermit Project @ Columbia University SSH
[EMAIL PROTECTED]
Jeffrey Altman * Volunteer Developer Kermit 95 2.1 GUI available now!!!
The Kermit Project @ Columbia University SSH, Secure Telnet, Secure FTP, HTTP
http://www.kermit-project.org/Secured with MIT Kerberos, SRP, and
[EMAIL PROTECTED
.
Jeffrey Altman * Sr.Software Designer Kermit 95 2.0 GUI available now!!!
The Kermit Project @ Columbia University SSH, Secure Telnet, Secure FTP, HTTP
http://www.kermit-project.org/Secured with MIT Kerberos, SRP, and
[EMAIL PROTECTED] OpenSSL
with the first two is that they do have significant
performance impacts.
The problem with the last is that we do not want to need to know the
command line options for each and every compiler.
Jeffrey Altman * Sr.Software Designer Kermit 95 2.0 GUI available now!!!
The Kermit
the applications I know of that have
export approval, which use OpenSSL, is in fact static linked to the
OpenSSL library.
It would be interesting to know if any US based application, which
has export approval, does use the OpenSSL dll's.
Ken
Jeffrey Altman * Sr.Software Designer Kermit
to do the job.
Thanks a lot for your help.
Gastón Christen
Jeffrey Altman * Sr.Software Designer Kermit 95 2.0 GUI available now!!!
The Kermit Project @ Columbia University SSH, Secure Telnet, Secure FTP, HTTP
http://www.kermit-project.org/Secured with MIT Kerberos, SRP
There is no need to call RAND_screen() more than once.
0.9.4 is vulnerable to attacks because the random number generator is
not seeded with sufficient entropy. 0.9.6e takes more time in order
to generate the necessary entropy.
Using a hardcoded seed value with make your connections
already have done it a
long time ago (that's my guess at least...).
This is correct. Simply shipping a binary with an implemented
algorithm (even when not used) opens the distributor to patent
infringement claims.
Jeffrey Altman * Sr.Software Designer Kermit 95 2.0 GUI available now
port the resulting
subsequent fixes yourself.
Jeffrey Altman * Sr.Software Designer Kermit 95 2.0 GUI available now!!!
The Kermit Project @ Columbia University SSH, Secure Telnet, Secure FTP, HTTP
http://www.kermit-project.org/Secured with MIT Kerberos, SRP, and
[EMAIL
be suspicious of the quality and will
simply wait to see how things shake out.
--- Jeffrey Altman [EMAIL PROTECTED] wrote:
At 09:40 AM 8/9/2002 -0400, Gregg Andrew writeth:
OK so is version 0.9.6e that I just compiled with Apache-2.0.39 any good?
It was my understanding that all known
of the win32 build maintenance
to double-check this for me and update the build procedure before next
beta or release.
Thank you very much,
Jeffrey Altman * Sr.Software Designer Kermit 95 2.0 GUI available now!!!
The Kermit Project @ Columbia University SSH, Secure Telnet, Secure FTP, HTTP
http
such as C-Kermit 8.0
http://www.kermit-project.org/ckermit.html
Jeffrey Altman * Sr.Software Designer Kermit 95 2.0 GUI available now!!!
The Kermit Project @ Columbia University SSH, Secure Telnet, Secure FTP, HTTP
http://www.kermit-project.org/Secured with MIT Kerberos
.
http://www.kermit-project.org/k95.html
For web browsers I am unaware of a single one that supports FTP AUTH
SSL. You could probably take the code that Peter Runestig wrote for
the FTP clients that he supports on Unix and integrate it into
Mozilla.
Jeffrey Altman * Sr.Software Designer
OpenSSL Security Advisory [30 July 2002]
Does this affect Apache Web Servers?
If they are compiled with OpenSSL support then 'yes'.
Jeffrey Altman * Sr.Software Designer Kermit 95 2.0 GUI available now!!!
The Kermit Project @ Columbia University SSH, Secure Telnet, Secure FTP
), ssl_verify_callback );
SSL_CTX_set_verify_depth( ctx, 4 );
SSL_CTX_set_options( ctx, SSL_OP_ALL );
...bind to port...
SSL_new()
SSL_accept( ) /* returns 0 */
This should be
SSL_connect();
Jeffrey Altman * Sr.Software Designer Kermit 95 2.0 GUI available
files that Peter provides in his
distribution.
Jeffrey Altman * Sr.Software Designer Kermit 95 2.0 GUI available now!!!
The Kermit Project @ Columbia University SSH, Secure Telnet, Secure FTP, HTTP
http://www.kermit-project.org/Secured with MIT Kerberos, SRP, and
[EMAIL
.) and no one here has ever implemented SSL before and our Unix
guy is across the country so unless if I want to wait 2 more weeks, I have
to set the Linux box up myself.
Thanks,
Michael
- Original Message -
From: Jeffrey Altman [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Cc: [EMAIL
.
See http://www.kermit-project.org/telnetd.html for a list of servers
that support START_TLS
Jeffrey Altman * Sr.Software Designer Kermit 95 2.0 GUI available now!!!
The Kermit Project @ Columbia University SSH, Secure Telnet, Secure FTP, HTTP
http://www.kermit-project.org
.
Mike
- Original Message -
From: Jeffrey Altman [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Monday, July 01, 2002 11:57 AM
I am new to the whole SSL thing and I want to set up an SSL Telnet =
server (not SSH). Is there a package that does this or do
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
Jeffrey Altman * Sr.Software Designer Kermit 95 2.0 GUI
://www.kermit-project.org/security.html
-Mensaje original-
De: Jeffrey Altman [mailto:[EMAIL PROTECTED]]
Enviado el: jueves, 06 de junio de 2002 19:58
Para: [EMAIL PROTECTED]
CC: [EMAIL PROTECTED]
Asunto: Re: telnetd-ssl
That depends on whose Telnetd you are using and how you want
linux ? S:-(
=20
Zanx.
=20
Manuel Guerrero Martos
IN3 S.A.L.
C/ Prim, 16 A - Bajo
12003 Castell=F3n
964723680
[EMAIL PROTECTED]
www.in3.es
=20
Jeffrey Altman * Sr.Software Designer Kermit 95 2.0 GUI available now!!!
The Kermit Project @ Columbia University SSH, Secure Telnet
http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
Jeffrey Altman * Sr.Software Designer Kermit 95 2.0 GUI available now!!!
The Kermit Project @ Columbia University SSH, Secure Telnet
http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
Jeffrey Altman * Sr.Software Designer Kermit 95 1.1.21 available now!!!
The Kermit Project @ Columbia University SSH plus Telnet
http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
Jeffrey Altman * Sr.Software Designer Kermit 95 1.1.21 available now!!!
The Kermit Project @ Columbia University SSH plus
/security.html
SET AUTH TLS DSA-CERT-FILE
SET AUTH TLS DSA-CERT-KEY
SET AUTH TLS RSA-CERT-FILE
SET AUTH TLS RSA-CERT-KEY
Jeffrey Altman * Sr.Software Designer C-Kermit 8.0 available now!!!
The Kermit Project @ Columbia University includes Telnet, FTP and HTTP
http://www.kermit
stated above.
Best regards,
Lutz
There is an answer to this of course. It is do not link against
OpenSSL but instead load the libraries and functions manually as
OpenSSL does with the DSO interface. Then the two programs are
separate with separate licenses.
Jeffrey Altman
. This includes
such things as CRL location not specified in certificate errors when
CRL verification is turned on. There are any number of reasons why
this message may be generated.
- Jeff
Jeffrey Altman * Sr.Software Designer C-Kermit 8.0 available now!!!
The Kermit Project @ Columbia
http://www.kermit-project.org/ftpd.html
for one list.
Jeffrey Altman * Sr.Software Designer C-Kermit 8.0 available now!!!
The Kermit Project @ Columbia University includes Telnet, FTP and HTTP
http://www.kermit-project.org/ secured with Kerberos, SRP, and
[EMAIL
: the #ifdef / #endif is unnecessary and clutters the source.
As of at least C90 #undef with a name that is not currently defined is
ignored. See ISO 9899-1990 6.8.3.5.
If only this were true. OpenSSL compiles with strict checking and all
warnings are considered errors.
Jeffrey Altman
technical reason why telnet+stunnel cannot
work (at least to the extent of avoiding the client-server
deadlock problem I observe)?
Jeffrey Altman [EMAIL PROTECTED]
Sent by: [EMAIL PROTECTED]
08/03/2002 23:19
Please respond to openssl-users
To: [EMAIL PROTECTED
SSL_clear(ssl);
SSL_set_session(ssl,NULL);
SSL_set_accept_state(ssl);
I believe I got this code from some very old ssleay applications.
However, this has not worked with OpenSSL since at least 0.9.5.
Jeffrey Altman * Sr.Software Designer C-Kermit 8.0 available now!!!
The Kermit
:-)
/Stefan
-Original Message-
From: Jeffrey Altman [mailto:[EMAIL PROTECTED]]
Sent: den 20 februari 2002 18:25
To: [EMAIL PROTECTED]
Cc: '[EMAIL PROTECTED]'
Subject: RE: RAND_poll hangs on WINNT 4.0
Stefan:
This is helpful information. So the problem
]
Jeffrey Altman * Sr.Software Designer C-Kermit 8.0 available now!!!
The Kermit Project @ Columbia University includes Telnet, FTP and HTTP
http://www.kermit-project.org/ secured with Kerberos, SRP, and
[EMAIL PROTECTED]OpenSSL. Interfaces with OpenSSH
; walking the memory
allocation tables; reading screen data; and including data from the
Windows crypto apis.
Jeffrey Altman * Sr.Software Designer C-Kermit 8.0 available now!!!
The Kermit Project @ Columbia University includes Telnet, FTP and HTTP
http://www.kermit-project.org
within the certificate. And since the private key
is needed for signing and decryption, is this not security enough for
data transfer?
/Jan
Jeffrey Altman * Sr.Software Designer C-Kermit 8.0 available now!!!
The Kermit Project @ Columbia University includes Telnet, FTP and HTTP
it.
-Original Message-
From: Jeffrey Altman [mailto:[EMAIL PROTECTED]]
Sent: mercredi 9 janvier 2002 06:13
To: [EMAIL PROTECTED]
Cc: '[EMAIL PROTECTED]'
Subject: Re: Problem with openssl.exe
How does openssl.exe knows the SSLEAY environment variable under WNT4?
When
I type openssl, I
)
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
Jeffrey Altman * Sr.Software Designer C-Kermit 8.0 available now!!!
The Kermit
]
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
Jeffrey Altman * Sr.Software Designer C-Kermit 8.0 Beta available
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
Jeffrey Altman * Sr.Software
Jeffrey Altman * Sr.Software Designer C-Kermit 8.0 Beta available
The Kermit Project @ Columbia University includes Secure Telnet and FTP
http://www.kermit-project.org/ using Kerberos, SRP, and
[EMAIL PROTECTED] OpenSSL. SSH soon to follow
PROTECTED]
Automated List Manager [EMAIL PROTECTED]
Jeffrey Altman * Sr.Software Designer C-Kermit 8.0 Beta available
The Kermit Project @ Columbia University includes Secure Telnet and FTP
http://www.kermit-project.org/ using Kerberos, SRP
All,
From a client application perspective, is SSL/TLS the same as SSH. If =
not then what is the difference?
Cheers
Mike
They are completely different and incompatible protocols.
Jeffrey Altman * Sr.Software Designer C-Kermit 8.0 Beta available
The Kermit Project @ Columbia
Did you recompile your application for 0.9.6b? 0.9.5a is not binary
compatible with the newer release.
Hello openssl-users,
I use openssl pretty long time, but only in simple mode. Recently ,
installed version 96b (major release) and found that my application
become to crash. I checked it
]
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
Jeffrey Altman * Sr.Software Designer C-Kermit 8.0
.
In that case porting the crypto/rand directory should be fine.
But check the announcement, it has details of what needs to be changed
if you are doing a partial port.
Another question I had Is openssl PRNG ANSI X9.17
compatible ?.
I have no idea.
Jeffrey Altman * Sr.Software Designer C-Kermit 7.1
in HTTP do so by using the TLS Kerberos cipher suites.
Jeffrey Altman * Sr.Software Designer C-Kermit 7.1 Alpha available
The Kermit Project @ Columbia University includes Secure Telnet and FTP
http://www.kermit-project.org/ using Kerberos, SRP, and
[EMAIL PROTECTED
ol problem. This is a user
training issue. There is only so much that software can do.
Jeffrey Altman * Sr.Software Designer C-Kermit 7.1 Alpha available
The Kermit Project @ Columbia University includes Secure Telnet and FTP
http://www.kermit-project.org/ using Ker
.
Again, not an SSL problem since SSL does not require the use of PKI
ciphers. Feel free to use a non-PKI cipher in your SSL
implementation. This is a problem with the implementations found in
Netscape and Microsoft browsers.
Jeffrey Altman * Sr.Software Designer C-Kermit 7.1 Alpha available
. You absolutely should not use the contents
of the plaintext data to determine if you should negotiate SSL/TLS.
Jeffrey Altman * Sr.Software Designer
The Kermit Project * Columbia University
612 West 115th St * New York, NY * 10025 * USA
http
that flag is static.
Jeffrey Altman * Sr.Software Designer
The Kermit Project * Columbia University
612 West 115th St * New York, NY * 10025 * USA
http://www.kermit-project.org/ * [EMAIL PROTECTED
so frequently with an 'add_entropy'
value of 0 in RAND_poll()?
I would assume the 'add_entropy' value is supposed to indictate the
relative strength of the entropy being passed in, but I doubt that it
should be 0.8 in most cases.
Jeffrey Altman * Sr.Software Designer
Jeffrey Altman * Sr.Software Designer
The Kermit Project * Columbia University
612 West 115th St * New York, NY * 10025 * USA
http://www.kermit-project.org/ * [EMAIL PROTECTED
Jeffrey Altman * Sr.Software Designer
The Kermit Project * Columbia University
612 West 115th St * New York, NY * 10025 * USA
http://www.kermit-project.org/ * [EMAIL PROTECTED
http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
Jeffrey Altman * Sr.Software Designer
The Kermit Project * Columbia University
es could tell us.
Protocols are not considered "retail", "mass market", or otherwise.
Only applications can be considered "retail", "mass market", ...
Jeffrey Altman * Sr.Software Designer
The Kermit Project * Columbia Un
://www.kermit-project.org/k95.html
Jeffrey Altman * Sr.Software Designer
The Kermit Project * Columbia University
612 West 115th St * New York, NY * 10025 * USA
http://www.kermit-project.org/ * [EMAIL PROTECTED
.
Jeffrey Altman * Sr.Software Designer
The Kermit Project * Columbia University
612 West 115th St * New York, NY * 10025 * USA
http://www.kermit-project.org/ * [EMAIL PROTECTED]
__
OpenSSL Project
PROTECTED]
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
Jeffrey Altman * S
in the middle.
If the proxy is on a Trusted OS, that is great. But it doesn't change
the security model one bit. The proxy should not be interfering with
the end to end properties of SSL.
Jeffrey Altman * Sr.Software Designer
The Kermit Project * Columbia
[EMAIL PROTECTED]
Jeffrey Altman * Sr.Software Designer
The Kermit Project * Columbia University
612 West 115th St * New York, NY * 10025 * USA
http://www.kermit-project.org
for this.
alas, I don't know if OpenSSL works on top of other protocols, but it
shoukd:
you might want to use BIO's to fake 'normal' sockets.
Jeffrey Altman * Sr.Software Designer
The Kermit Project * Columbia University
612 West 115th St * New
http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
Jeffrey Altman * Sr.Software Designer * Kermit-95 for Win32 and OS/2
The Kermit Project
[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
Jeffrey Altman * Sr.Software Designer * Kermit-95 for Win32 and OS/2
The Kermit Project * Columbia University
612 West 115th St #716 * New York, NY * 10025
of patches implementing the current
FTP over TLS Internet-Draft at
ftp://ftp.runestig.com/
Jeffrey Altman * Sr.Software Designer * Kermit-95 for Win32 and OS/2
The Kermit Project * Columbia University
612 West 115th St #716 * New York, NY * 10025
http
1 - 100 of 136 matches
Mail list logo