On 08/14/2011 03:53 PM, Dr. Stephen Henson wrote:
Should be fixed by this:
http://cvs.openssl.org/chngview?cn=21247
Hi and thanks, it would solve all my problems too! Unfortunately, it
doesn't seem to work for me :(
__
On 08/16/2011 02:58 PM, Dr. Stephen Henson wrote:
Can you give me a more complete report?
I detailed my situation in a previous recent thread ( Please help:
OpenSSL + OpenVPN Elliptic Curves (SHA512, ECDSA, ECDH, Linux, Debian) ).
Briefly:
- I want to use ECDSA+SHA512 for OpenVPN
On 08/13/2011 04:28 AM, Dave Thompson wrote:
Adjacent in the code, 1.0.0 like 0.9.8 allows kECDH*e* only for cert
signed ECDSA+SHA1
Now, this is interesting. I have tried an OpenVPN setup using elliptic
curves certificates generated with OpenSSL 1.0.0, and in fact I've found
that I couldn't
On 08/13/2011 04:20 PM, yyy wrote:
In that openssl.cnf file add section section [server]
Thanks, I've just figured it out :) it's strange that the default
openssl.cnf lacks a [server] section, shouldn't it be inserted by default?
Hi,
I'm setting up an OpenVPN client-server using OpenSSL 1.0.0 for cert
generation.
How do I set the nsCertType attribute to server in the server cert? I
mean, without using automated scripts like easy-rsa.
This is what I'm doing:
openssl genrsa -out serverkey.pem 4096
cd ..
openssl req
On 07/20/2011 12:45 PM, Gaglia wrote:
...
Feedbacks always appreciated, in case somebody has further investigated
the issue :)
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
On 07/16/2011 07:13 PM, y...@inbox.lv wrote:
...
So everybody here seems to agree that steps 1)...7) I listed in the
first post are correct, and that the problem in EC management lies in
OpenVPN, right?
__
OpenSSL Project
On 07/16/2011 06:50 AM, y...@inbox.lv wrote:
openssl dgst -ripemd160 -sign ec5_ca.key shr.o.txt
WARNING: can't open config file: /usr/local/ssl/openssl.cnf
Error setting context
My premise is that we are considering only OpenSSL v 1.0.0. Under this
condition, as I wrote in the first post, I
On 07/15/2011 08:23 AM, Kyle Hamilton wrote:
...
Excuse me, I got lost somewhere... Does this mean that it is not
possible to use EC crypto with OpenSSL because the algorithms are
patented? If so, why OpenSSL does provide support to EC crypto?
Sorry, I don't want to start a religion war, but as
On 07/11/2011 05:27 AM, y...@inbox.lv wrote:
When i searched on it, it seemed that ECDH requires specified named
curve
You need to specify the curve's name, like this:
openssl ecparam -name sect571k1
but this should only be done in the parameters generation stage, the
generated
On 07/05/2011 03:23 PM, Gaglia wrote:
I'm trying to make an OpenVPN setup with Elliptic Curves cryptography
and SHA-512 on Linux Debian.
No idea anybody, really? :(
__
OpenSSL Project http
Hi, first of all please accept my apologizes, I know this is a question
more related to OpenVPN, but I think that the problem lies in the cert
authority and client/server certificate generation step with OpenSSL, so
I'm also posting it here, hoping for a solution.
I'm trying to make an OpenVPN
12 matches
Mail list logo
