Hi,
Now a self signed certificate is something like someone saying I am
your Trusted Partner. You can trust me because I have a
passport which I
issued myself. You can believe in this if for example you
can check the
key's fingerprints with your partner over telephone. But if
you
On Tue, Nov 22, 2005 at 09:14:58AM -, Mark wrote:
I'm still not sure what these files are for. I guess that the
nuckey.pem
is a private key (does this need loading with
SSL_CTX_use_certificate_chain_file?).
I guess the nucreq.pem is the public key which requires signing. Do I
need to
Hello,
I am trying to patch the PKCS#7 code to (partially) handle CMS ver 3.
What I need is to parse a CMS structure that has an attribute
certificate in the certificates field of SignedData.
The relevant defintions from RFC 2630 are:
SignedData ::= SEQUENCE {
version CMSVersion,
try this to find the error:
i=SSL_accept(con);
switch (SSL_get_error(con,i))
{
case SSL_ERROR_NONE:
break;
case SSL_ERROR_WANT_WRITE:
can some one please point me to an example of non-blocking IO reading
with openssl.
Thanks,
Perry
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
Hi,
You could have a look at apps/s_client.c code looking for nbio option.
It seems that there is two way of doing such thing:
- craete nbio BIO and then connect, etc..
- connect (a socket for example) and then set non blocking IO
(with the socket utilities)
hope it could help
Fred
Hi,
Thanks for all the help everyone.
We're signing the certificates for users. They call up the servers and
present a certificate which authorises them. The root certificate is
stored on the servers, and the fingerprint of it is stored in custom
silicon (so no-one can change the entire
Hi,
It is still better to have a CA that signs certificates,
there are some
technical reasons in openssl,
it is simpler to program the trust checking, in fact with self signed
certs you need callbacks
to accept them, while with a trusted CA, you don't.
This has put a spanner in the
The problem is, this happened on a machine not my own, and I cannot
reproduce this. All I have to go by is the log, and unforutnately, I
didn't log the actual return value from SSL_accept(). All I know is
that it returned = 0. And that the error code returned by
ERR_get_error() was 0. So I'm
Mark wrote:
Hi,
The following command seems to create a new public and private key:
# openssl req -newkey rsa:1024 -keyout nuckey.pem -keyform PEM -out
nucreq.pem -nodes -outform PEM
What are these key files for?
I'm still not sure what these files are for. I guess that the
nuckey.pem
is
Hey
all,
I am writingmy
own security sw module for a device.My predecessor left this project
unfinished and I am filling his shoes. Naturally they want this done tomorrow. I
immediately noticed this device hasOpenSSL built into it,
soleveraging off of thatfor my certification seems very
Hi all,
I am having a weird problem in my site related to SSL.
I can connect from inside the network to the secure pages , so the
certificate is fine. From outside the connections are refused. I have a
monitoring company checking the site and from them I got the following
error message
TCP
Hi,
Is it possible to use AES en-decryption using asymmetric keys(private and
public keys)
Thanks,
-Dorai
DISCLAIMER
This message and any attachment(s) contained here are information that is
confidential, proprietary to HCL Technologies
and its customers. Contents may be privileged or
13 matches
Mail list logo