Hi All,
We have a product that has 2 network interfaces i.e. wired and wireless.
Both interfaces uses separate OpenSSL library. However FIPS validated
OpenSSL crypto module is common for both interfaces as shown below.
FIPS validated openSSL
On 05/29/2014 02:52 AM, Salz, Rich wrote:
Please don't feed the troll
--
Principal Security Engineer
Akamai Technologies, Cambridge, MA
IM: rs...@jabber.me; Twitter: RichSalz
Being cynical is equal to being a troll?
The initial remarks made by an openssl representative was that that most
On 28/05/14 15:13, Salz, Rich wrote:
The signature on a certificate is made using the key of its parent CA. So that
means that the parent CA uses an RSA key and not an ECDSA key.
I thought the spec says the cert should be signed with the same key type. Not
sure which spec, sadly. :( And
Hi,
I am planning to upgrade open SSL in my operating system(RHEL). I have
applications running in the system, i.e. Tomcat web application, Web server,
Message broker etc. Do i need to check for compatible issues before i go
with the upgrade. Thanks!
--
View this message in context:
I am very pleased to announce that the Linux Foundation Core
Infrastructure Initiative (CII),
http://www.linuxfoundation.org/programs/core-infrastructure-initiative,
has extended full time fellowships to Stephen Henson and Andy Polykov of
the OpenSSL project. Andy will need to disengage from
On 05/29/2014 11:39 AM, Steve Marquess wrote:
I am very pleased to announce that the Linux Foundation Core
Infrastructure Initiative (CII),
http://www.linuxfoundation.org/programs/core-infrastructure-initiative,
has extended full time fellowships to Stephen Henson and Andy
Polykov ...
Oops,
Wow you guys are rocking kudos
-- #contagious
-Original Message-
From: owner-openssl-us...@openssl.org
[mailto:owner-openssl-us...@openssl.org] On Behalf Of Steve Marquess
Sent: Thursday, May 29, 2014 11:40 AM
To: openssl-users@openssl.org
Subject: Linux Foundation Core Infrastructure
Hi,
Dave, thank you very much for your suggestions. This sounds like the
solution I'm looking for. I've set up a completely new PKI to test this,
but I'm still having one problem.
What I did was:
- I generated a newRootCA (new keypair, selfsigned certificate).
- I generated another selfsigned
I am pleased to announce a continuing sponsorship by the Milton Security
Group (https://miltonsecurity.com/company/). Their CEO, Jim McMurry,
indicated that while they are still a small firm, We
use OpenSSL in our product and we are now at a point where we can
start giving back.
Sustainable
hello,
i am working with windows ce 6.5. i am built WCECOMPAT and got 2 library
files and then i compiled openSSL for that and i am successfully compiled it
using target CPU ARMV4.
but i do not know how to use library files in my project so please help me
out.
Thank you
--
View this message
Frans,
I apologize. My posting was a mistake. (I meant to cancel my posting, but
instead my fingers hit control-return rather than escape.)
I am sorry that, on the basis of one posting, I called you a troll, or implied
that you had anything other than concern and interest in seeing the best
\applause all around!
--
Mark H. Wood, Lead System Programmer mw...@iupui.edu
Machines should not be friendly. Machines should be obedient.
signature.asc
Description: Digital signature
Good on you for sending that apology. I thought it was inappropriate to label
that commenter to dismiss his point of view. I also think Steve addressed his
cynical comments well, the part about taking money from anyone as long as it
comes with no strings attached is wrong, IMHO. That can be
Hi,
Then again, many developers do have a social handicap - that's why
they are so good a developer.
that sweeping generalisation is probably worse than calling one person
a troll! ;-)
alan
__
OpenSSL Project
but let's say it's the government of North
Korea... Even if no strings, it would damage the perception people have of
OpenSSL just being associated with that entity. So, just be mindful of
people's perceptions when accepting anything.
That cuts both ways... Privacy is a human right in many
Hi,
Say, I have a servercert.pem, serverkey.pem and cacert.pem. When
using SSL_CTX_use_certificate_chain_file() to load a cert file as the
second argument, I will have to construct the file like this:
cat servercert.pem serverkey.pem cacert.pem server.pem
and use server.pem in the API.
My
government of North Korea... Even if no strings, it would damage the
perception people have of OpenSSL just being associated with that entity.
So, just be mindful of people's perceptions when accepting anything.
+1.
Dennis Rodman goes to North Korea and says its just basketball, not
A big Applause, Congrats
On Thu, May 29, 2014 at 11:36 PM, Mark H. Wood mw...@iupui.edu wrote:
\applause all around!
--
Mark H. Wood, Lead System Programmer mw...@iupui.edu
Machines should not be friendly. Machines should be obedient.
--
Warm Regards
--Dev
OpenPegasus Developer
On Thu, May 29, 2014 at 12:53:06PM -0700, David Li wrote:
Say, I have a servercert.pem, serverkey.pem and cacert.pem. When
using SSL_CTX_use_certificate_chain_file() to load a cert file as the
second argument, I will have to construct the file like this:
cat servercert.pem serverkey.pem
Dennis Rodman goes to North Korea and says its just basketball, not
political. Everyone except him knows he was used. OpenSSL cannot
metaphorically go to North Korea without damage to its brand -- especially
now that real financial support is forthcoming.
Its a slippery slope. You can't
On 05/29/2014 09:52 PM, Jeremy Gray wrote:
government of North Korea... Even if no strings, it would damage the
perception people have of OpenSSL just being associated with that
entity. So, just be mindful of people's perceptions when accepting
anything.
+1.
Dennis Rodman goes
On Thu, May 29, 2014 at 4:51 PM, Frans de Boer fr...@fransdb.nl wrote:
...
Ok, I accept the above apologies as I just want to express my worries. Yes,
it was cynical - I used one line from Huwai, which triggered my response.
The initial comment from the OpenSSL spokesperson about the focused
On Thu, May 29, 2014 at 3:26 PM, Jeffrey Walton noloa...@gmail.com wrote:
but let's say it's the government of North
Korea... Even if no strings, it would damage the perception people have of
OpenSSL just being associated with that entity. So, just be mindful of
people's perceptions when
From: owner-openssl-us...@openssl.org On Behalf Of Sven Reissmann
Sent: Thursday, May 29, 2014 12:24
snip
What I did was:
- I generated a newRootCA (new keypair, selfsigned certificate).
- I generated another selfsigned certificate (bridgeCert) from the
newRootCA's private key. From
From: owner-openssl-us...@openssl.org On Behalf Of Jakob Bohm
Sent: Wednesday, May 28, 2014 13:04
On 5/25/2014 2:22 PM, Hanno Böck wrote:
Some clients (e.g. all common browsers) do fallbacks that in fact
can invalidate all improvements of later tls versions.
These fallbacks also can
+1 for working *sed* into everyday conversation.
Dustin
On May 29, 2014 5:49 PM, Jeffrey Walton noloa...@gmail.com wrote:
On Thu, May 29, 2014 at 3:26 PM, Jeffrey Walton noloa...@gmail.com
wrote:
but let's say it's the government of North
Korea... Even if no strings, it would damage the
26 matches
Mail list logo