On Wed, Sep 03, 2003 at 11:46:30AM -0400, Charles B Cranston wrote:
Sean McKay wrote:
I was not able to get the LDAPS server to respond to the query so out of
despiration, I thought I'd try HTTPS -- if I remember right, I think
Microsoft uses a non-standard for LDAPS that I can't remember
We are using Postfix (SMTP) and Courier (POP/IMAP) with SSL. We created
our own certificate with the following commands:
Postfix:
openssl genrsa 1024 www.xxx.com.key
openssyl req -new -key www.xxx.com.csr
openssl req -x509 -key ... -in ... www.xxx.com.crt
Courier POP/IMAP:
openssl req
Hello,
it's possible to generate a private key using genrsa.
But how to obtain an appropriate public key?
It doesn't matter if both keys will be generated step by step
or at once.
Thank you for an advice.
--
Best regards,
Dusan Juhas
Leif Kremkow wrote:
Hi,
Using my own CA, I've signed two cert. requests. One cert. is for me
as a user, the other for my STunnel daemon. The idea is to use x509
for both encrypted and authenticated communication. For testing and
playing, I'm trying to use it on Win2K with it's Telnet server.
CA
Hallo,
in the sample config file that comes with openssl, there are some
maximal lenghts for some of the values, i.e.:
commonName_max = 64
emailAddress_max= 40
I couldn't figure out the real limits for those values.
Does someone know these limits or where to
On Wed, 3 Sep 2003, Kent Yoder wrote:
Hi,
Under heavy load ( 95%) on s390 (SLES8, openssl-0.9.7b), I've been
seeing these bad write retries. We're using 12 PCICA cards with IBMCA engine
enabled and home-brew openssl client/server apps, and the errors only happen
when doing
Hi,
Has the error involve
while compiling example1.c been rectified.
I am referring to
PEM_ASN1_read function. I am using openssl-0.9.7b .
When I compile the file
using the above function, its failing.
However instead of PEM_ASN1_READ, when I use
PEM_read_X509, it passes.
x509 = (X509
I'm coming close to the end of the work to get OpenSSL FIPS-140ed. So,
if people have comments/changes/concerns, they'd better get a move on
and clue me in, because once its done we can't change it.
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html http://www.thebunker.net/
There is no
Hi,
We are using Cyberflex Access e-gate 32K cards from Schlumberger. The
pkcs#11 library that we are using is the one that they provide with the
cards. We are using windows 2000.
Regards,
Aintzane
I am using java to test my ssl supported web server,
I alwayse get error HTTPS hostname wrong: should be 192.168.0.1,
I google the error it seems this happens if the hostname in the URL
does not match the hostname in the certificate?
but my hostname in url is 192.168.0.1,is the hostname in
This is a problem we have struggled with. I do not use host names
on much of our equipment. I would like to use IP addresses. I believe
the certificates require hostnames
On Thu, Sep 04, 2003 at 07:35:31PM +0800, linux guy wrote:
I am using java to test my ssl supported web server,
I alwayse
Aintzane Armentia Diaz de Tuesta wrote:
Hi,
We are using Cyberflex Access e-gate 32K cards from Schlumberger. The
pkcs#11 library that we are using is the one that they provide with the
cards. We are using windows 2000.
Then you might try using a pkcs11 engine (for example see:
On Thu, Sep 04, 2003, Chandran,Vinod wrote:
Hi,
Has the error involve while compiling example1.c been rectified.
I am referring to PEM_ASN1_read function. I am using openssl-0.9.7b .
When I compile the file using the above function, its failing.
However instead of PEM_ASN1_READ,
Yeah I am refering to loadkeys.c.Is there any specific reason why the usage
of this function
has been discouraged.
Thanks,
Vinod C
-Original Message-
From: Dr. Stephen Henson [mailto:[EMAIL PROTECTED]
Sent: Thursday, September 04, 2003 5:39 PM
To: [EMAIL PROTECTED]
Subject: Re: Problems
On Thu, Sep 04, 2003, Chandran,Vinod wrote:
Yeah I am refering to loadkeys.c.Is there any specific reason why the usage
of this function
has been discouraged.
Well the approved way is to use the functions you mention such as
PEM_read_X509(). PEM_ASN1_read() is a low level function which
Thanks for the tip, but unfortunately that didn't fix the problem. I'm still
seeing the same behavior...
Kent
On Thursday 04 September 2003 05:11 am, Arne Ansper wrote:
On Wed, 3 Sep 2003, Kent Yoder wrote:
Hi,
Under heavy load ( 95%) on s390 (SLES8, openssl-0.9.7b),
Yes, that's exactly what I suspect it to me. At one time I
had a URL to a nice techical writeup of the problem, which
bit us trying to use PHP to connect to the IBM product.
Later I read somewhere that it was a problem for the
Microsoft product but I have not tested this directly.
There was an
For RSA the public key is a subset of the private key.
So any program that needs a public key can also take
just the fields it needs from a private key given to it.
The fields in a private key are:
modulus
private exponent
all the rest are precomputed intermediate results for
the Chiness
Since I was contacted about this problem today, which I posted on the
list few weeks ago (and to which I finally found a solution) I thought I
should post the remedy that I found. The problem occurs because of a bug
in certain version of GCC. I recompiled GCC and then recompiled openssh
and now
19 matches
Mail list logo
