Currently, I'm running openssl 0.9.6e w/ apache 1.3.26. Due to
recent news, I need to upgrade openssl. My questions are:
1. Could I upgrade the openssl libs to say 0.9.6k or 0.9.7c without
having to upgrade Apache?
2. If I upgrade to apache 2, is openssl support? In other words,
will it
By the way, I downloaded and tried that build for C++Builder 5
today
(I'm running XP). Perhaps I didn't install it correcty, but I
overlaid
the 2 .lib's on top of the one's I had built from the source and
were
already included in my project, etc. However, my app crashed with
access
Hi Thomas,
Here are some more details on this error:
Where were the access violations?
Project DDRM_Client.exe raised exception class EAccessViolation with
message 'Access violation at address 77F69BDD in module 'ntdll.dll'.
Write of address 0010'
This occurs immediately upon pressing F9
You mentioned that you rebuilt the source again...did you
build the dlls or just the libs that are part of the
bcb.mak file for Borland C++ instructions.
If you built the dlls, can you please tell all of us how to
do that using the Borland C++ compiler...thanks.
I only rebuilt the libs.
Greetings,
I've successfully written a client/server app on Linux whereby I've
connected an SSL context to a socket. The Linux client was only for
testing the server, and now I am writing the real client in C++Builder
v5.
My question is:
Has anyone ever connected the SSL context to a
Greetings All,
I have a ques about X509_free() vs. EVP_PKEY_free().
In my init code (err logic removed) I get the key using:
x509 = PEM_read_X509(fp, NULL, NULL, NULL);
SrvPubKey = X509_get_pubkey(x509);
X509_free(x509);
And later in my exit code I use:
-Original Message-
Greetings All,
I have a ques about X509_free() vs. EVP_PKEY_free().
In my init code (err logic removed) I get the key using:
x509 = PEM_read_X509(fp, NULL, NULL, NULL);
SrvPubKey = X509_get_pubkey(x509);
X509_free(x509);
And later in my
Hi All,
In openssl-0.9.7c/demos/sign/sign.c the comments state (as does the
man page):
/* Just load the crypto library error strings,
* SSL_load_error_strings() loads the crypto AND the SSL ones */
/* SSL_load_error_strings();*/
ERR_load_crypto_strings();
Yet if I try to load the ssl
Hello again :)
I still need to keep this short as long emails still a problem.
Tried setting MTU to 1450, still hangs on emails over 800 bytes.
Last lines in maillog is (DebugLevel 99):
Sep 27 22:11:38 ns1 sm-mta[2513]: h8S5BKkL002513: -- DATA
Sep 27 22:11:38 ns1 sm-mta[2513]:
Greetings All,
I was studying the certs I'd created and (unless I've missed
something) I've realized that there is actually nothing in a
certificate that tells anyone exactly where to go to get the issuer's
certificate (i.e. walk the chain). Here's lines from one of my certs
that could even
My Issue:
I have 2 certificates: a self signed server certificate and a
purchased domain specific certificate. When I connect to the
domain with https://mydomain.com it works fine, but if I try
to connect to another port (https://mydomain.com:2020), the
self signed certificate is the one
About .0's
The symbolic link names come from
X509_subject_name_hash()
{
X509_NAME_hash(x-cert_info-subject)
}
The integer in the end is useful if you have multiple
certificates with same subject name.
/Gaurav
Thank you very much.
Dann
Hi All,
I still need to keep this short as long emails still a problem.
Tried setting MTU to 1450, still hangs on emails over 800 bytes.
Last lines in maillog is (DebugLevel 99):
Sep 27 22:11:38 ns1 sm-mta[2513]: h8S5BKkL002513: -- DATA
Sep 27 22:11:38 ns1 sm-mta[2513]: h8S5BKkL002513: ---
Greetings All,
I'm getting ready to develop a client/server app that will use OpenSSL. The
server will be C on Linux but I'm still open on the Windows client app. I
can use Java, Delphi, or VB to write the client app in. Are there quality
ports of openssl libs available for any or all of these
Thank you to everyone for their suggestions, I will check those out.
Best,
Dann
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated
Hi,
My Sendmail/STARTTLS server is hanging on incoming emails that are
approx. 900 bytes or over. 800 bytes get accepted ok. Maybe a
fragmentation or MTU problem? I turned off firewall to be sure it wasn't
blocking fragments so that's not it.
If STARTTLS is not used on an email, longer ones get
Hello All,
I wonder if someone would be so kind as to provide a bit
more detail regarding certificate chains and how it affects
the openssl setup?
For this discussion, let's assume I've created my own CA
self-signed cert, and then created a cert for each of my
virtual servers and signed each
Thank you Henrik, it's getting clearer :)
But, just a couple more questions? :)
snip
If the certificate is issues by a second level CA and the
client trusts the higher level CA who issued the
certificate for the second level CA then you must present
the CA chain or else the client will not
I seem to not be getting emails through to this list now.
Did this one make it?
Thanks,
Dann
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL
, I would be very, very
grateful.
Thank you very much,
Dann Daggett
Start of ssldump ---
New TCP connection #1: dann.3db2b.com(3161) - ns3.3db2b.com(25)
10.0154 (10.0154) SC
---
220 ns3 ESMTP
Ok I went to this URL https://www.3db2b.com using netscape and
was presented a cert warning, I accepted the cert for the session
then was redirected to http://www.exposim.com.
Yes, that was the correct, it should have given you index.html which does in
fact have a redirect on it.
I get the
Ok I went to this URL https://www.3db2b.com using netscape and
was presented a cert warning, I accepted the cert for the session
then was redirected to http://www.exposim.com.
I get the same error that you get with the page not found
with IE, but it does not redirect!
I just changed the
TCP FIN
10.0088 (0.0002) SC TCP FIN
Anything in there indicate an error to anyone?
Thank you again,
Dann Daggett
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
by yourself
and others?
Thank you,
Dann Daggett
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager
/openssl-0.9.7b/certs/ to /usr/local/ssl/certs? It
seems strange that the install script wouldn't have done that as well if it
were needed.
Thank you,
Dann Daggett
__
OpenSSL Project http
However, I still don't know about the empty /certs directory. Am I
supposed
to copy /usr/local/src/openssl-0.9.7b/certs/ to /usr/local/ssl/certs? It
seems strange that the install script wouldn't have done that as well if
it
were needed.
Well you copy the ones that are relevant to what
Then the contents of the /certs directory just doesn't matter,
since the OpenSSL library is being explicitly told where the
certificates are to be found.
It all depends on what you want to do.
grin I need to do it all. After apache for secure transactions, I want to
use my own certs to
27 matches
Mail list logo