In message [EMAIL PROTECTED] on Wed, 15 May 2002
14:06:41 +0200, Maxime Dubois [EMAIL PROTECTED] said:
maxime.dubois I have 3 CAs: 1 rootCA and two sub CAs (subCA1 and subCA2) signed by
rootCA.
maxime.dubois The CDP in subCA1 and subCA2 certs points to the rootCA CRL.
maxime.dubois The CDP in
Hello friends:
How are you! I am Kinj.
I am a beginner in OpenSSL. I am trying to realize client authentication
with SSL library in my application.
I suceeded in sending to a server by using .PEM file as follows:
SSL_CTX_use_certificate_file(ctx, MyClient.pem,
On Thu, May 16, 2002 at 09:31:19PM +0900, Kin Jun wrote:
I am a beginner in OpenSSL. I am trying to realize client authentication
with SSL library in my application.
I suceeded in sending to a server by using .PEM file as follows:
SSL_CTX_use_certificate_file(ctx,
On 15 May 2002, Eric Rescorla wrote:
Chris Cleeland [EMAIL PROTECTED] writes:
On Wed, 15 May 2002, John Jones wrote:
[snip]
Steps I vaguely see, please help me if you can:
2) I need to use the command line utility that comes with OSSL to make
uh..what? A private key? A
There is an example in OpenSSL. (I'm using 0.9.6c)
Check out the file apps\apps.c and look for the functions load_cert and
load_key. These will read the PKCS12 file and return either and X509
certificate (X509*) or a private key envelope (EVP_PKEY*). Once you have
them, you just need to call
Hi,
I'have generated keys in pkcs8 format with java and openssl. The thing
that was not expected is the difference of the two files structure.
The two files I generated look like that:
The file generated with java
-BEGIN ENCRYPTED PRIVATE KEY-
HI,
We have openssl generating an RSA 1024/1001 key, using openssl the routines produce a
X509 encoded public key of 159 bytes.
This encoded key is successfully decoded and read into an IAIK key. If you then try to
get the encoded public key out of the IAIK key you get a byte array of 161
Configuration-
Mail Client: Outlook 2000 on NT 4.0, using verisign email cert
OpenSSL: 0.9.6b on Mandrake 8.1
Problem: Trying to send and encrypted email from the mandrake system to the outlook
client using command line:
openssl smime -encrypt -in test.txt -from [EMAIL PROTECTED] -to
Hi,
Did you use Java keytool for generating the private key? If yes, what were
the options. If not, then did you do it programmatically? What methods? what
classes?
Regards,
Pankaj Kumar.
-Original Message-
From: Haikel
To: [EMAIL PROTECTED]
Sent: 5/17/02 9:10 AM
Subject: URGENT: PKCS8
Hello
Here is my problem
I have a Verisign signed certificate (certifiacate A) and want to create
certificates which will be signed by it.
I create a pair certificate (certifiacate B) private key and send the
certificate (B) to a server
But when it signes the certifiacate with its private key
Hi,
You must have a CA certificate to be able to sign other certificates. Did
you get a CA certificate from VeriSign?
You do this in openssl by specifying v3_ca extensions ( as per the demoCA
openssl.cnf file ).
/Pankaj.
-Original Message-
From: Benoit Goarin
To: [EMAIL PROTECTED]
Benoit,
You have a Client Certificate from Verisign and you can't use it to sign a
new certificate.
You need a CA certificate, which it is the type of certificate that it's
able to sign. To obtain this kind of certificate from Verisign, you have to
buy Verisign On Site product (I think that's
can someone tell me how can i send an encrypted email
using openssl ?
what lines to type on the command line and how
can the other person can decrypt the mail.
Assume both of us use pine.
Thanks
_
Click below to visit monsterindia.com and
Greetings,
I have a simple question: I am attempting to generate a 64 bit key, because
apparently larger keys are illegal in France, yet I get the following error:
Private key is too short, it needs to be at least 384 bits, not 64.
Is there a way to generate such keys?
Thanks
Jason
I don't know about regulations in France, but AFAIK, this limitation
applies to symetric keys, not private/public keys.
I think 384/512 bit RSA keys provide the same level of security as 64
bit DES keys.
Hope that it helps,
Regards,
Alejandro Rusell
-Mensaje original-
De: Jason
Greetings,
I have a simple question: I am attempting to generate a 64 bit key, because
apparently larger keys are illegal in France, yet I get the following error:
Private key is too short, it needs to be at least 384 bits, not 64.
Is there a way to generate such keys?
Thanks
Jason
Hello
Why should I use SSL_shutdown ? I mean, I have successfully used the
closesocket() operations under win98 (async sockets) and the client
and server apps are just fine with closing the connection in this
manner, so why do I need SSL_shutdown for ? I know it's not
secured against a close
Hi everybody,
I implemented a client-server application with openssl version 0.9.6c
(engine) and everything works fine on Win32 platform.
I try to do the same on tru64 and I get the following error during the
accept:
error:0005:lib(0):func(0):bad asn1 object header
I use a client
Hi!
I 've sent a request to a ssl-server that does not work with http, only with
sockets.
Here the command line:
openssl s_client -connect x.x.x.x:443 -cert ~/testcerts/ssl-client-cert.pem
-key ~/testcerts/ssl-client-key.pem -showcerts -prexit -state -ssl3
The output was:
connect:
Title: RE: connection refused, error code 146
The output was:
connect: Connection refused
connect:errno=146
[snip]
^^ There's your problem.
Connection refused most likely caused by server
not configured properly.
Make sure your server is configured to listen
on port 443.
we use PKCS7 with Java.
Can't speak to the other question.
- Original Message -
From: Haikel [EMAIL PROTECTED]
Date: Fri, 17 May 2002 17:10:51 +0100
To: [EMAIL PROTECTED]
Subject: URGENT: PKCS8 format to be used with java
Hi,
I'have generated keys in pkcs8 format with java and
While compiling openssl-0.9.6c with (./config --prefix=/usr -D_REENTRANT
threads shared) on Solaris 2.6 Platform sun4u sparc SUNW,Ultra-5_10. I
noticed a platform specific library.
ldd /lib/libcrypto.so.0.9.6
libsocket.so.1 =/lib/libsocket.so.1
libnsl.so.1 =
Folks,
Just to clairfy the question a bit more..
We are attempting to build a solaris package for
solaris 2.6 that contains zlib, openssl, and openssh
for our internal use. While compiling the openssl
software using the parameters below on a Sparc Ultra 5
system we noticed that the crypto
On Thu, 16 May 2002, [ISO-8859-1] Martinez Bernardo · Maria Elena wrote:
Benoit,
You have a Client Certificate from Verisign and you can't use it to sign a
new certificate.
Nothing could stop a programmer from using such a private key to sign
other certificates.
However, an application
On Thu, May 16, 2002 at 04:19:08PM +0200, Lugeon Blaise wrote:
Hi everybody,
I implemented a client-server application with openssl version 0.9.6c
(engine) and everything works fine on Win32 platform.
I try to do the same on tru64 and I get the following error during the
accept:
Hello to all I am a student and a new user of openssl
I was using this command on my shell
but from where i should get these files
~/testcerts/ssl-client-cert.pem
~/testcerts/ssl-client-key.pem -showcerts -prexit -state -ssl3
I donot have them even in my /usr/local/include/openssl
directory.
26 matches
Mail list logo
