Hi all, I'm something of a newbie at this whole encryption game. I've set up our own CA here using self signed certificates, (certificates only get used within the company). OpenSSL works a treat, I've got stunnel securing various connections, mod_ssl running, and we've been trying out WinCrypt for signing files.
My problem is that although WinCrypt (www.wincrypt.de) seems to do the trick, the authors can't/won't tell me how it actually signs files - just that they use the Microsoft crypto API. My german is a lot worse than their english which doesn't help. Does anyone know how it works? How I can produce compatible signed messages with OpenSSL? How I can verify files using OpenSSL? I tried `openssl smime -verify ...` but got: Error reading S/MIME message 3285:error:2107A087:PKCS7 routines:SMIME_read_PKCS7:no content type:pk7_mime.c:222: Anyone know / tested if it suffers from the Microsoft intermediate CA forging bug? Can anyone suggest a simple, cheap GUI tool which can be used with OpenSSL certificates to sign and verify files (we need to keep these as files) which runs on MSWindows? Colin ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
