On 22/03/2011 09:24, Crypto Sal wrote:
Me thinks they don't understand Client Authentication/Digital
Certificates. The server doesn't typically need to verify up to the
root, they provide a list of acceptable client CA names during the
handshake.
I'm using a CAfile that has all of the certifi
On Mon, Mar 21, 2011 at 08:49:09PM -0700, Claus Assmann wrote:
> On Mon, Mar 21, 2011, Victor Duchovni wrote:
>
> > Can you explain a bit more clearly why you can't initialize an
> > integer index or two when the application starts?
>
> I can, but that's not the problem. Here's an example:
> in
On 03/22/2011 12:09 AM, plot.lost wrote:
Or do you simply mean you looked manually at the x509 output
(probably -text) and it looks correct to you?
Yes, using -text to manually check the chain.
Have you confirmed this alert is in response to your cert?
You can use s_client with -debug, or r
On 22/03/2011 08:09, plot.lost wrote:
Or do you simply mean you looked manually at the x509 output
(probably -text) and it looks correct to you?
Yes, using -text to manually check the chain.
Have you confirmed this alert is in response to your cert?
You can use s_client with -debug, or run
Or do you simply mean you looked manually at the x509 output
(probably -text) and it looks correct to you?
Yes, using -text to manually check the chain.
Have you confirmed this alert is in response to your cert?
You can use s_client with -debug, or run a network monitor
(I recommend www.wire
On Mon, Mar 21, 2011, Victor Duchovni wrote:
> Can you explain a bit more clearly why you can't initialize an
> integer index or two when the application starts?
I can, but that's not the problem. Here's an example:
initialize:
SSL_load_error_strings(); ...
ssl_ctx = SSL_CTX_new();
myidx = SSL_C
> From: owner-openssl-us...@openssl.org On Behalf Of plot.lost
> Sent: Monday, 21 March, 2011 11:44
> I am having problems connecting to a system that requires a client
> certificate. Generated the csr using the relevant openssl commands and
> sent that to the required authority for signing. Tha
Hi All,
I built OpenSSL 0.9.8e and OpenSSL 1.0.0d on AIX 53 and AIX61. I
configured using the following Configure options:
Configure aix-cc shared
In the result, numerous symbols are not being exported:
exec(): 0509-036 Cannot load program ./GenExec because of the following
erro
Hi,
I am wondering if anybody has a chance to look at this.
If this question is already answered in some old archives could somebody point
me to the link please.
Any help is greatly appreciated.
Thanks,
Prkj
From: prkj...@hotmail.com
To: openssl-users@openssl.org
Subject: Error while verif
I am having problems connecting to a system that requires a client
certificate. Generated the csr using the relevant openssl commands and
sent that to the required authority for signing. That has come back as a
valid certificate (can use openssl x509 to verify the certificate
content), but usin
Jeff Saremi writes:
[...]
> According to the RFC, is it an error for a certificate and its chain not
> to have any CRLs and CRL distribtuion points?
No, but you're perhaps confusing things by joining the two together. On
CRL DPs, "this profile RECOMMENDS support for this extension by CAs and
a
If I just try to describe the problem in a different way it would be:
According to the RFC, is it an error for a certificate and its chain not
to have any CRLs and CRL distribtuion points?
If the answer to the above is yes, then what OpenSSL does is OK because
the programmer would have to explici
On Sun, Mar 20, 2011, Strecker, Dean A. wrote:
>
> Steve,
>
> The project I'm working on is not an SSL solution. I just need to
> create keys and sign certificates and a few other cryptographic
> activities. I'm using the OpenSSL crypto library to create/manage
> certificates. My only remaini
Steve,
The project I'm working on is not an SSL solution. I just need to
create keys and sign certificates and a few other cryptographic
activities. I'm using the OpenSSL crypto library to create/manage
certificates. My only remaining hurdle is to sign the certs using an
elliptic curve key and
14 matches
Mail list logo