Thanks Dave,
EVP_DecodeBlock did the magic.
-Sri
On Tue, Feb 5, 2013 at 5:47 AM, Dave Thompson wrote:
> >From: owner-openssl-us...@openssl.org On Behalf Of Srivardhan Hebbar
> >Sent: Tuesday, 29 January, 2013 04:57
>
> >I have a string which has the certificate in PEM(Base64) format.
> >I wan
On 02/05/2013 03:11 PM, Jeffrey Walton wrote:
> Hi All,
>
> This relates to 'OpenSSL Security Advisory [05 Feb 2013]' and the
> accompanying CVEs. The bulletin did not address combinations of FIPS
> Object Module and FIPS Capable Library Combinations.
>
> Please forgive my ignorance. I don't like
Does anyone have a windows make file that uses fipslink to build an
executable that they can forward to me?
Alternatively a Visual Studio project that uses that would also help?
The smaller and simpler the project the better.
I'm trying to build a windows executable that uses the fips librari
Thanks for the new release, and all the ongoing work.
How does the release relate to the source under git as viewed through
http://git.openssl.org/gitweb/ ? I don't see any mention of 1.0.1d in there,
and the latest change in 1_0_1-stable was 13 days ago.
Is the web view of the repository laggi
Hi All,
This relates to 'OpenSSL Security Advisory [05 Feb 2013]' and the
accompanying CVEs. The bulletin did not address combinations of FIPS
Object Module and FIPS Capable Library Combinations.
Please forgive my ignorance. I don't like to take a lot of latitude or
license on these things. I'm t
Thanks Jakob. But still, it is not clear to me.
If server random is not present, a malicious user can copy all the messages
from client and can replay them multiple times leading to DoS attack. But
even if client random is not present, I believe, attacker cannot replay
messages from server side as
When OpenSSL issues security advisories, two unfortunate details make it
hard to receive them through the mail lists:
1. All the advisories have the *exact* same subject, causing many mail
clients to incorrectly thread them as responses to previous security
advisories. Suggested solution: Incl
On 2/5/2013 12:05 PM, Thulasi wrote:
Hello all,
** This is not regarding OpenSSL software but about the protocol in
general.
I am trying to understand the use of 32 byte(4 byte data + 28 byte rand)
client random which is part of Client Hello. I understand that Server
Random is required to avoid
On Tue, Feb 05, 2013, Michael Ionescu wrote:
> On 07.07.2012 23:27, Dr. Stephen Henson wrote:
> >
> > I added an option -force_pubkey to the OpenSSL 'x509' utility
> > to do this. It is only in HEAD at present.
>
>
> Hi Steve,
>
> that's excellent! If I am not mistaken, this is exactly what on
On 07.07.2012 23:27, Dr. Stephen Henson wrote:
>
> I added an option -force_pubkey to the OpenSSL 'x509' utility
> to do this. It is only in HEAD at present.
Hi Steve,
that's excellent! If I am not mistaken, this is exactly what one would
also need in order to use the pubkey in individually tru
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
OpenSSL Security Advisory [05 Feb 2013]
SSL, TLS and DTLS Plaintext Recovery Attack (CVE-2013-0169)
Nadhem Alfardan and Kenny Paterson have discover
Hi,
For access to the windows store, openssl provides the CAPI engine.
I've looked into this recently, because I needed the same support for loading
server side certificates with CAPI engine, but unfortunately, I learned that
there is no support for this in an official release of openssl (I s
Hi,
I am new to openssl and is facing with the following dilemma.
A server application needs to read certificates and private keys from the
windows certificate store for establishing SSL connection with the clients.
Can anyone tell whether openssl supports/ have interfaces for accessing
certific
13 matches
Mail list logo
