Title: How to support Wrong Format Certificate
Hello, all
I installed Apache+mod_ssl+OpenSSL as HTTPS Server, and I must make the
server support the Wrong Format Certificate(See in attechment).
How can I do?
private key in following format
typedef struct {
unsigned int bits;
On Tue, Jul 30, 2002 at 03:27:40PM +0800, Stone Shi wrote:
Hello, all
I installed Apache+mod_ssl+OpenSSL as HTTPS Server, and I must make the
server support the Wrong Format Certificate(See in attechment).
How can I do?
I could see nothing wrong with this certificate.
DER encoding is
Hello!
Did you use OpenSSL in a VC++ Component before?
I am developing an ATL component with VC++ in windows 2000 environment but
encountered the problem . I am not sure if I can use OpenSSL function in a
component. For example:
pkey = PEM_read_PrivateKey(fp12, NULL,NULL, NULL);??
Pls give me
Hello!
I have programmed succefully a piece of VC++ with OpenSSL. The program is to
read the private key in a client's machine and do the signature. I'd like to
set cookies using this Signature to Client's machine later.
What makes me confused is how to combine my VC++ program with web page,
I'm getting an unusual problem, (maybe). I've seen
this problem posted before on this list and many
others, but haven't been able to figure out the
problem yet.
I'll just tell you that I'm trying to compile and
install Crypt::SSLeay so I can use Fetchyahoo. If
that makes any difference or not.
On Tue, Jul 30, 2002 at 10:49:02AM +0100, Chuo HUANG(CMS) wrote:
Hello!
I have programmed succefully a piece of VC++ with OpenSSL. The program is to
read the private key in a client's machine and do the signature. I'd like to
set cookies using this Signature to Client's machine later.
I have set up some certificates using CA.pl but when I
try to connect to any openssl server I get back the
self signed certificate in certificate chain error.
What is it that causes this error to be reported?
I created the certificates like so:
$perl CA.pl -newca
$perl CA.pl -newreq
$perl CA.pl
Hi,
If we want to know what is in private key, use command ,
$ openssl rsa -noout -text -in private.key
then there are exponent1 and exponent2.
I wonder what is this.
Best regards!
==
Long-Ji. Chen
Dept. Control/Instr. Eng.
Kangwon National University
Chunchon
OpenSSL Security Advisory [30 July 2002]
Does this affect Apache Web Servers?
Regards
Grant Walters
Brainbench 'Most Valuable Professional' for Unix Admin
Walters Associates, P O Box 13-043 Johnsonville, Wellington, NEW ZEALAND
Telephone: +64 4 4765175, CellPhone 025488265, ICQ# 23511989
OpenSSL Security Advisory [30 July 2002]
This advisory consists of two independent advisories, merged, and is
an official OpenSSL advisory.
Advisory 1
==
A.L. Digital Ltd and The Bunker (http://www.thebunker.net/) are
conducting a security review of OpenSSL, under the DARPA program
Ok I finally figured it out: the compare routine's signature needs to be
int my_cmp(X509_ATTRIBUTE **a, X509_ATTRIBUTE **b);
not
int my_cmp(X509_ATTRIBUTE *a, X509_ATTRIBUTE *b);
However, my compare routine can only compare a few types of attributes
like OCTET_STRINGs and BMPSTRINGs.. It is
OpenSSL Security Advisory [30 July 2002]
Does this affect Apache Web Servers?
If they are compiled with OpenSSL support then 'yes'.
Jeffrey Altman * Sr.Software Designer Kermit 95 2.0 GUI available now!!!
The Kermit Project @ Columbia University SSH, Secure Telnet, Secure FTP,
On 07/30/02 11:08 AM, Ben Laurie sat at the `puter and typed:
SNIP
Apply the attached patch to OpenSSL 0.9.6d, or upgrade to OpenSSL
0.9.6e. Recompile all applications using OpenSSL to provide SSL or
TLS.
SNIP
So when will 0.9.6e be available? The news page claims it's there,
but
On 07/30/02 09:05 AM, Louis LeBlanc sat at the `puter and typed:
On 07/30/02 11:08 AM, Ben Laurie sat at the `puter and typed:
SNIP
Apply the attached patch to OpenSSL 0.9.6d, or upgrade to OpenSSL
0.9.6e. Recompile all applications using OpenSSL to provide SSL or
TLS.
SNIP
- Original Message -
From: Chuo HUANG(CMS) [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, July 30, 2002 11:49 AM
Subject: OpenSSL and Web pages
Hello!
I have programmed succefully a piece of VC++ with OpenSSL. The program is
to
read the private key in a client's machine and
Hello, openssl.
Can anybody describe, how can I make CA certificates with depth more tham zero?
ThanksDo You Yahoo!?
Yahoo! Health - Feel better, live better
Hello list!!!
I'm newer on this and i'm trying to use SSL with webmin.
I've a server RH 7.2 with Webmin installed.
I did :
CA -newca
CA -newreq
CA -signreq
CA -pkcs12 my certificate
how i must configure webmin from a windowz pc
Thanks a lot for your help
Sorry about my poor english.
HernĂ¡n
Lutz,
Thank youforyour assistancewith
my last problem, which helped me to getpast error 19. I am now failing
error 20, as is seen below in the ssl_engine_log output. I do not seem to have
any problem when I use a browser to connect to the site. My problem comes when I
attempt to use
I've been trying to get SSL_CTX_use_PrivateKey_ASN1 to
load in a der encoded private key without success. I
have gotten my application working with pem encoded
certificates but have hit a brick wall with loading
der encoded private keys(I have no problem loading the
client/ca certs)
The code
On Tue, Jul 30, 2002 at 05:52:09AM -0700, Oleg Shema wrote:
Hello, openssl.
Can anybody describe, how can I make CA certificates with depth more tham zero?
I think, you mean this:
openssl.cnf:
basicConstraints = CA:true,pathlen:5
more details at doc/openssl.txt
Christian
Hi,
I have a CA, and I have a web server. The web server's cert is signed by
the CA. On this server I want to only allow those clients which have
valid cert's for accessing it (no anonymous access that is). In apache
this is done by adding a list of the user's certs. This is fairly simple.
If I
21 matches
Mail list logo
