I am running IE 6.0 with cipher strength of 128 bit. Is there an additional security patch that I need to install even if the "About Box" says that its 128 bit?
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Dr. Stephen Henson Sent: Thursday, January 16, 2003 4:43 PM To: [EMAIL PROTECTED] Subject: Re: Problem decrypting a signed and then encrypted pkcs7 message on windows 98 using Crypto API On Thu, Jan 16, 2003, Himanshu Soni wrote: > Hi > > I apologize for this annoying win32 spam. I have google'd a lot but > still couldn't find the exact reason why a windows 98 with IE 6.0 box > would fail to decrypt a signed and then encrypted pkcs7 message that I > generated using openssl 0.9.6g. > > When the message is EVP_des_ede3_cbc() encrypted, then on windows 98 > with IE 6.0, Crypto API's CryptDecryptAndVerifyMessageSignature(...) > call fails with NTE_BAD_FLAGS. When I EVP_des_cbc() encrypt the message, > then its fine on windows 98 with IE 6.0. > > The same code works fine on windows me/xp/2000 for EVP_des_ede3_cbc() > encrypted message. > > Has anyone seen this or similar behavior and if so, would you please > help? > > Has Win98 had the 128 bit security patch applied? If not that could be the problem. IIRC the About box in Internet Explorer should give this info. Steve. -- Dr. Stephen Henson [EMAIL PROTECTED] OpenSSL Project http://www.openssl.org/~steve/ ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
