Hi Steve:
On 2010-11-23, at 6:20 PM, Dr. Stephen Henson wrote:
Well you can nest tags like that but that's not the correct encoding for that
module.
The inner tag uses IMPLICIT tagging so you need IMPLICIT:1 for the second one.
Yes - sorry - my mistake.
Well if you used SEQUENCE
Some zip programs do not restore the links properly. Regardless, when you
first build, those header files should be recreated from their actual locations
(e.g. openssl-1.0.0b/ssl/ssl.h).
Erik Tkal
Juniper OAC/UAC/Pulse Development
-Original
Hello all,
I am working on a man in the middle proxy and am almost finished with
it. The particulars of this proxy are as follows:
* Multi threading is enabled, and used
* The write, and read operations are Non blocking, neither are the
underlying bios
* The proxy pays
I see intermitten failures to complete an SMTP STARTTLS handshake
with some servers. This happens when on entry into
ssl_check_serverhello_tlsext() the server proposes a kEECDH
cipher, say:
(gdb) p *(s-s3-tmp.new_cipher)
$7 = {valid = 1, name = 0x2a95a0ceea ECDHE-RSA-DES-CBC3-SHA, id =
Hi,
This is a known issue for which I have sent a patch (under ticket #2240)
on April 25th 2010. OpenSSL wrongly returns an error if the ServerHello
is missing the Supported Point Format extension whereas it should
interpret it as only uncompressed format is supported.
Can you check that