2007/12/19, Marek Marcola <[EMAIL PROTECTED]>:
>
> On Wed, 2007-12-19 at 12:31 -0500, Ben assis wrote:
> > Hi, On an imac intel dual core, I recently migrated to Leopard from
> > Tiger 10.4.10. On my Tiger client I had installed my own web server
> > using openssl and mod_ssl with Apache 1.3 server
On Wed, 2007-12-19 at 12:31 -0500, Ben assis wrote:
> Hi, On an imac intel dual core, I recently migrated to Leopard from
> Tiger 10.4.10. On my Tiger client I had installed my own web server
> using openssl and mod_ssl with Apache 1.3 server; https was working
> fine. On Leopard with apache 2.2.6
Hi, On an imac intel dual core, I recently migrated to Leopard from Tiger
10.4.10. On my Tiger client I had installed my own web server using openssl
and mod_ssl with Apache 1.3 server; https was working fine. On Leopard with
apache 2.2.6 and OpenSSL 0.9.7, configuration files have significantly
ch
8 bytes for md5 and
> 40 bytes for sha
>
> Please let me know if i am wrong
You are right, this implemetation does not use md5 and this record MAC
calculation use 40 bytes of pad1 and pad2. If, for example, negotiated
ciphersuite will be DES-CBC3-MD5 then in record MAC calculation you
sho
ards,
Suchindra Chandrahas
Marek Marcola <[EMAIL PROTECTED]> wrote: On Mon, 2007-12-17 at 19:39 -0800,
Suchindra Chandrahas wrote:
> Hi All,
> I am doing the following to calculate MAC
> as per SSL v3 handshake:
>
> printf("\nRESULT: Plain Record encry
Hi Merek,
Thanks a lot for replying! I changed a lot of code and
downloaded wireshark source and made debug messages larger in number. I finally
debugged step by step and kept on rectifying the code.
Now the MAC is fine!!!
Wireshark Debug Messages Say So!
I am getting the
On Mon, 2007-12-17 at 19:39 -0800, Suchindra Chandrahas wrote:
> Hi All,
> I am doing the following to calculate MAC
> as per SSL v3 handshake:
>
> printf("\nRESULT: Plain Record encryption:\n");
> for ( i = 0; i < rec_len; i ++)
>
Hi All,
I am doing the following to calculate MAC
as per SSL v3 handshake:
printf("\nRESULT: Plain Record encryption:\n");
for ( i = 0; i < rec_len; i ++)
printf("%x ", rec[i]);
tota
,
>
> I'm developing a unix-like environment for traditional Mac OS, and
> I'd like to use Roy Wood's randomizer code (packaged in OpenSSL) to
> implement /dev/random. However, the code in question
> (Randomizer.cpp) contains no copyright notice or license, and my
> email to
Hello,
I'm developing a unix-like environment for traditional Mac OS, and
I'd like to use Roy Wood's randomizer code (packaged in OpenSSL) to
implement /dev/random. However, the code in question
(Randomizer.cpp) contains no copyright notice or license, and my
email to [
Having trouble building OpenSSL on Mac.
Info: I'm working on a PowerPC G4 Mac running MacOS X 10.3.9. It has
XCode 1.5, including gcc 3.3 with the "November 2004 Update". (I'm not
actually using XCode, but it was the easiest way to get the whole
compiler/linker package i
I'm working on a PowerPC G4 Mac running MacOS X 10.3.9. It has XCode
1.5, including gcc 3.3 with the "November 2004 Update". (I'm not
actually using XCode, but it was the easiest way to get the whole
compiler/linker package installed.) This Mac has to remain at 10.3.9,
My SSL application recently began throwing the following error
whenever I try to connect:
SSL error (-1, 1, 336130329) (error:1408F119:SSL
routines:SSL3_GET_RECORD:decryption failed or bad record mac)
The strange thing is that the same application, running on a
different machine, does not
Hello,
> My SSL application recently began throwing the following error
> whenever I try to connect:
>
> SSL error (-1, 1, 336130329) (error:1408F119:SSL
> routines:SSL3_GET_RECORD:decryption failed or bad record mac)
>
> The strange thing is that the same appl
Hi All-
My SSL application recently began throwing the following error
whenever I try to connect:
SSL error (-1, 1, 336130329) (error:1408F119:SSL
routines:SSL3_GET_RECORD:decryption failed or bad record mac)
The strange thing is that the same application, running on a
different
Hi,
is there an easy way to do the Retail-MAC as described in ISO 9797-1 in
openssl?
Reg
Steffen
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl
Marko Asplund wrote:
On 2006-04-14, at 12.26, Nils Larsch wrote:
try a recent snapshot from the stable branch and let openssl
build shared libraries (see first problem mentioned in the
PROBLEM file).
i tried the workaround described in the PROBLEMS file with
openssl-0.9.8-stable-SNAP-200604
On 2006-04-14, at 12.26, Nils Larsch wrote:
try a recent snapshot from the stable branch and let openssl
build shared libraries (see first problem mentioned in the
PROBLEM file).
i tried the workaround described in the PROBLEMS file with
openssl-0.9.8-stable-SNAP-20060417. openssl binary se
Dear Openssl users,
In Bulk data transfer, How the Data plus the MAC encrypted? which one is encrypted first?
Thanks in advance
[EMAIL PROTECTED] wrote:
hi
i'm having problems trying to build OpenSSL 0.9.8a on an Intel based Mac OS X
10.4.6.
if i've understood correctly, building goes fine up to the point where the openssl binary is
being linked. at that point i get lots of errors about undefined symbo
hi
i'm having problems trying to build OpenSSL 0.9.8a on an Intel based Mac OS X
10.4.6.
if i've understood correctly, building goes fine up to the point where the
openssl binary is
being linked. at that point i get lots of errors about undefined symbols and
the build
termi
[mailto:[EMAIL PROTECTED] Behalf Of Mark Slater
>Sent: Friday, March 17, 2006 4:00 PM
>To: openssl-users@openssl.org
>Subject: make test failure on Intel-based mac
>
>
>I'm trying to build OpenSSL 0.9.7i on an Mac mini with the Intel Core
>Duo chip in it, r
s that this is already fixed in the 0.9.7 stable snapshots. I don't have an Intel mac to test on but the line no longer contains -DB_ENDIAN.Ben
anks,
Mark
On Mar 17, 2006, at 3:59 PM, Mark Slater wrote:
I'm trying to build OpenSSL 0.9.7i on an Mac mini with the Intel
Core Duo chip in it, running MacOS X 10.4.5. My config line is:
./config threads shared zlib-dynamic --openssldir=/usr/local/
openssl --prefix=/usr/local
The build
I'm trying to build OpenSSL 0.9.7i on an Mac mini with the Intel Core
Duo chip in it, running MacOS X 10.4.5. My config line is:
./config threads shared zlib-dynamic --openssldir=/usr/local/openssl
--prefix=/usr/local
The build works fine, darwin-386 is correctly identified, but w
Oops! Those MD function names include an underscore inbetween and are like MD4_Init() instead of MD4Init(). My code is now building fine. Sorry to have bothered you! Thanks!
View this message in context: Re: How to build openssl for Mac-Intel computers
Sent from the OpenSSL - User forum at
ge in context: Re: How to build openssl for Mac-Intel computers
Sent from the OpenSSL - User forum at Nabble.com.
Hi Jorg, thanks a lot for your prompt reply! My initial source was giving me problems, but when I picked the latest one, it compiled like magic! Thanks once again!
View this message in context: Re: How to build openssl for Mac-Intel computers
Sent from the OpenSSL - User forum at Nabble.com.
Hi,
> Hi Jorg, you've mentioned in your message that 'A static library with ppc code
> has been done already.'
>
> Could you pl. share here how you've done it ? I'm trying to do the same on my
> mac but can't even run the 'config' scr
Hi Jorg, you've mentioned in your message that 'A static library with ppc code has been done already.' Could you pl. share here how you've done it ? I'm trying to do the same on my mac but can't even run the 'config' script that comes with the source. Tha
Hi William,
thanks for your hint.
I'd give it a try, but I must admit that I'm neither a "Configure"- nor a
"Perl"-Guru :'(
A short description where to change the appropriate setting(s) would be
helpful.
Maybe someone has already done it?
Jörg
>> Hi everybody,
>>
>> we have a new platform -
Jörg Eyring wrote:
Hi everybody,
we have a new platform - Macs with Intel processors.
Is there a chance to build a static library (i386 code) for linking in Xcode
2.2? A static library with ppc code has been done already. I'd like to end
up with a Universal Binary of my code.
For fun; doesn't
Hi everybody,
we have a new platform - Macs with Intel processors.
Is there a chance to build a static library (i386 code) for linking in Xcode
2.2? A static library with ppc code has been done already. I'd like to end
up with a Universal Binary of my code.
Thanks a lot for any ideas!
-
A littel more info... The shared install fails with the following:
installing 4758cca
cp: lib4758cca.so: No such file or directory
installing aep
cp: libaep.so: No such file or directory
installing atalla
cp: libatalla.so: No such file or directory
installing cswift
cp: libcswift.so: No such fil
Hi,
I'm trying to build and install the latest openssl and openssh on
Tiger. I've trawled the archive and couldn't find anything that quite
matched my issue...
I installed openssl with "./config --prefix=/usr/local
--openssldir=/usr/local/openssl" as was recommended somewhere else.
This appeare
Hi all,
I have promblems with the encrypten and decryption of large Strings.
the following code works fine with little data.
// Encrypt
...
PEM_SealInit(&
ctx,EVP_des_cbc(),EVP_md5(),ekey,ekeylen,iv,pubKey,pubkeyscount);
...
PEM_SealUpdate(& ctx,outbuf,& outlen,intext,intextlen);
...
PEM_SealFin
Hi all,
I was tried stunnel 4.0.9 compiled with Openssl 0.9.7g on Redhat ES 3.0 and
got the telnets sessions disconnected with error messages in stunnel.log as
below:
SSL alert (write): fatal: bad record mac
SSL_read: 1408F455: error:1408F455:SSL routines:SSL3_GET_RECORD:decryption
failed or
Hi folks. Repeating problem when I make openssl on my G4 Mac. Any help will
be greatly appreciated!
Thanks!
Mike
Here's the facts:
My Computer:
G4 Dual Processor, 1 Gig Ram, OS Version Mac OS X 10.2.8
using gnumake
Mac developer tools installed (but I'm not a developer - jus
Hi, all. I've been trying to get dynamic engine support working on OS X for
about a week now, and no luck. My goal is to use the opensc pkcs11 engine with
openssl, so I can use an aladdin etoken. I've got OpenSSL 0.9.8 05 Jul 2005,
according to openssl version. I configure openssl like this whe
In message <[EMAIL PROTECTED]> on Fri, 24 Jun 2005 08:58:29 -0700, Rush Manbert
<[EMAIL PROTECTED]> said:
rush> Just tried again with 20050624 snapshot. It built just fine and
rush> successfully ran all the tests.
Great! Thanks! Noted.
Cheers,
Richard
-
Please consider sponsoring my wor
bit new to using
OpenSSL with custom applications altogether, so I'd like to get some
information from this list on the first error, "decryption failed or
bad record mac". We'd like to use the FC3 packages of OpenSSL because
it would just make life simpler.
Our program is a mul
rror:
28437:error:140B544E:SSL routines:SSL_GET_NEW_SESSION:ssl session id
callback failed:ssl_sess.c:220:
...and our app fails to run completely. I'm a bit new to using
OpenSSL with custom applications altogether, so I'd like to get some
information from this list on the first error, "decryp
N:ssl session id
callback failed:ssl_sess.c:220:
...and our app fails to run completely. I'm a bit new to using
OpenSSL with custom applications altogether, so I'd like to get some
information from this list on the first error, "decryption failed or
bad record mac". We'd l
session id
callback failed:ssl_sess.c:220:
...and our app fails to run completely. I'm a bit new to using
OpenSSL with custom applications altogether, so I'd like to get some
information from this list on the first error, "decryption failed or
bad record mac". We'd like t
ably means the server terminated abnormally
before or while processing the request.
And the server log says:
[24129] LOG: SSL error: decryption failed or bad record mac
[24129] LOG: pq_recvbuf: recv() failed: Connection reset by peer
There is no problem when not using SSL. The Samba code doesn&
they
were not included in the build (a subtle and somewhat annoying feature
in Xcode allows this). Once I included them and rebuilt, the Xsec test
program built and ran without error.
I also discovered that in my Mac OS X 10.3.7 environment, the standard
Unix make procedure works perfectly
PROTECTED] on behalf of [EMAIL PROTECTED]
Sent: Wed 2/16/2005 1:08 PM
To: openssl-users@openssl.org
Cc:
Subject:bad record mac in handshake
Hi.
I'm trying to implement an EAP-TLS server.
Now I can get the TLS handshake start between my server and
the client.
The problem is that
Hi.
I'm trying to implement an EAP-TLS server.
Now I can get the TLS handshake start between my server and
the client.
The problem is that after receiving the change_cipher_spec and
the finished message (encrypted) from the client, the ssl
object send an alert message (bad record mac).
Wha
At 11:55 AM 9/27/2004 -0700, you wrote:
Assuming that your server is not listening for
non-SSL connections,
your clients are getting SSL connections whether they get prompted
to accept your server's cert or not.
The server is listening only to port 443 connections.
Feel free to prove me wrong
b
kloomis wrote:
At 08:36 AM 9/27/2004 -0400, you wrote:
Ken -
Missing from your description of the problem with Apache is:
which operating system are you using?
Once you provide specific information, more help can be provided
to you.
Janet:
Thanks for your reply. I am using Redhat 9.0
in there.
Chuck
-Original Message-From: kloomis
[mailto:[EMAIL PROTECTED]Sent: Saturday, September 25, 2004
11:56 AMTo: [EMAIL PROTECTED]Subject: RE: Mac
users bypass SSLAt 08:12 AM 9/25/2004 -0700,
you wrote:
See SSLRequireSSL Directive at http://httpd.apache.org/do
e2/htdocs/subarea" to the directory you want protected and eliminate the
Hope this helps you out. There is a lot to it.
Chuck
-Original Message-
From: kloomis [mailto:[EMAIL PROTECTED]]
Sent: Friday, September 24, 2004 6:44 PM
To: [EMAIL PROTECTED]
Subject: Re: Mac use
e valid-user
Change
"/usr/local/apache2/htdocs/subarea" to the directory
you want protected and eliminate the
Hope
this helps you out. There is a lot to it.
Chuck
-Original Message-From: kloomis
[mailto:[EMAIL PROTECTED]Sent: Friday, September
At 03:54 PM 9/24/2004 -0700, you wrote:
kloomis wrote:
At 11:31 PM 9/23/2004 -0700, you
wrote:
kloomis
wrote:
Hello:
I am using SSL with Apache 2.0 to run a "secure" website.
The problem I have is that Mac users using Internet Explorer open the
site without encryption. They access
kloomis wrote:
At 11:31 PM 9/23/2004 -0700, you wrote:
kloomis wrote:
Hello:
I am using SSL with Apache 2.0 to run a "secure" website. The
problem I have is that Mac users using Internet Explorer open the
site without encryption. They access it via an https:\\ address but
they
CTED]Sent: Friday, September 24, 2004
12:42 PMTo: [EMAIL PROTECTED]Subject: RE: Mac
users bypass SSLAt 06:57 AM 9/24/2004 -0700,
you wrote:
Ken,If your server is set up
correctly, it won't communicate in any mode other than ssl using the port
you assigned. How the brow
ight
stuff.
Chuck: Thanks for replying. Yes, that is what I am
asking. How do I configure Apache to require an SSL connection on
443?
Ken
Chuck
-Original Message-
From: kloomis
[mailto:[EMAIL PROTECTED]]
Sent: Thursday, September 23, 2004 9:26 PM
To: [EMAIL PROTECTED]
Subject: Mac us
At 11:31 PM 9/23/2004 -0700, you wrote:
kloomis wrote:
Hello:
I am using SSL with Apache 2.0 to run a "secure" website.
The problem I have is that Mac users using Internet Explorer open the
site without encryption. They access it via an https:\\ address but
they don't get as
Peter O Sigurdson wrote:
One reason I can think of is that if you wanted to PREVENT anyone
WITHOUT the certificate from accessing your site.
That is, you could mail out diskettes with the cert file to use as a
perimeter defense.
No, I meant a technical reason. You can argue that your computer sh
al Message-
From: kloomis [mailto:[EMAIL PROTECTED]
Sent: Thursday, September 23, 2004 9:26 PM
To: [EMAIL PROTECTED]
Subject: Mac users bypass SSL
Hello:
I am using SSL with Apache 2.0 to run a "secure" website. The problem I
have is that Mac users using Internet Explorer o
:31 AM
Please respond to openssl-users
To:
[EMAIL PROTECTED]
cc:
Subject:
Re: Mac users bypass SSL
kloomis wrote:
> Hello:
>
> I am using SSL with Apache 2.0 to run a "secure" website.
The problem I
> have is t
, September 21, 2004 12:11 AM
To: [EMAIL PROTECTED]
Subject: RE: TLS application data MAC
Hi Avinash,
Sorry for late reply, but I didn't follow the emails
on weekend.
You sent:
.
Key for HMAC_MD5 = server_auth_key
Input msg to MAC algorithm
{
seq no = 0x00 (8bytes)
Hi Avinash,
Sorry for late reply, but I didn't follow the emails
on weekend.
You sent:
.
Key for HMAC_MD5 = server_auth_key
Input msg to MAC algorithm
{
seq no = 0x00 (8bytes)
Type = 0x23 (application data)
version = 0x0301
Length = 0x05
Data = 0x01 0x07 0x00 0x05
Before seq no, there should be either the client MAC or server MAC
(depending on who you are).
Avinash Agarwal wrote:
Hello dragos,
I think you are referring to the problem with decrypting/encrypting
the TLS app data...I faced the problem but i was finally successful in
decrypting/encrypting
Hello dragos,
Thanks for the input.
The MAC generation mentioned below works alright for MAC generation
of Client/server hanshake finished messages.
However for the MAC generation for the TLS app data this is not working.
Any pointers on what could be wrong?
Regards,
Avinash
-Original
Hi Avinash,
The paragraph you mentioned is little bit vague,
better look at 6.2.3.1 from the same RFC; below is a
fragment from 6.2.3.1 paragraph:
..
The MAC is generated as:
HMAC_hash(MAC_write_secret, seq_num +
TLSCompressed.type +
TLSCompressed.version
Look at the Appendix -- Sample Code in http://www.ietf.org/rfc/rfc2104.txt
Avinash Agarwal wrote:
Hello all,
I'm trying to figure out how to generate the MAC for application data in TLS
v1.
The rfc (2246) says at § F.2 "protecting application data"
"Outgoing data is protect
Hello all,
I'm trying to figure out how to generate the MAC for application data in TLS
v1.
The rfc (2246) says at § F.2 "protecting application data"
"Outgoing data is protected with a MAC before transmission. To prevent
message replay or modification attacks, the MAC
hi ,
is there support for AES XCBC MAC in openssl?
i am working in IPSEC and would like to integrate that
algorithm.
can somebody suggest an implementation of AES-XCBC MAC
?
have a nice day,
navin
message --
Date: Thu, 22 Apr 2004 14:47:16 -0400 (EDT)
From: Jason A. Pfeil <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: OpenSSL error: sslv3 alert bad record mac
Greetings, List!
I am having difficulty with pine connecting from one of my machines to
my SSL IMAP server. What h
back to
the folder list, reselect the folder, and voila! It works just fine.
When the first connection vanishes, I get this error in my logfile:
imapd-ssl: couriertls: read: error:140943FC:SSL routines:SSL3_READ_BYTES:sslv3 alert
bad record mac
I have tracked this down with the courier-imap
I am getting a bunch of sslv3 alert bad record mac errors
when trying to encrypt sockets.
I've noticed that the percentage of errors versus good connections
tend to increase as the number of connections per second increases.
Any ideas as to what I should be looking into?
Thanks,
Al
Getting the error 'Security Failure. Data decryption error.' in Mac
Internet Explorer 5.2.3 when connecting to my apache https. All other
browsers I've tested on Mac and PC (including IE) connect properly.
Using apache 1.3.29 with mod_ssl-2.8.16-1.3.29, mm-1.3.0,
openssl-0.9.7c on
Hi:
I want to turn off the MAC for small packets. But all the algorithm suites that
come with openssl-0.9.7c seems to run with either MD5 or SHA.
Is there a way to configure it so that MAC is not used?
Also, what is the default block size for the block ciphers and stream ciphers
--On Tuesday, October 14, 2003 11:02 AM -0400 [EMAIL PROTECTED] wrote:
I'm not a Mac programmer, but I'm playing proxy for them. We will need
to support Mac down to OS9 and I'd like an idea how they will seed the
PRNG. For instance, on Windows there's at least a last r
At 11:02 AM 10/14/2003, [EMAIL PROTECTED] wrote:
I'm not a Mac programmer, but I'm playing proxy for them. We will need to
support Mac down to OS9 and I'd like an idea how they will seed the
PRNG. For instance, on Windows there's at least a last resort of
RAND_screen
I'm not a Mac programmer, but I'm playing proxy for them. We will need to support Mac down to OS9 and I'd like an idea how they will seed the PRNG. For instance, on Windows there's at least a last resort of RAND_screen(). On the MacOS 10 systems they probably have some
Hello,
I need to create and parsing a pkcs12 with the -twopass option. How can
I provide the MAC
password to openssl pkcs12 command directly from the command line? The
-passin option
allows to specify the password for the input key (with the -export
option) or for the import
in parsing
te (accept): SSLv3 read client
key exchange A
2003.03.05 13:20:35 LOG7[2417:8194]: waitforsocket: FD=8, DIR=read
2003.03.05 13:20:35 LOG7[2417:8194]: waitforsocket: ok
2003.03.05 13:20:35 LOG7[2417:8194]: SSL alert (write): fatal: bad record mac
2003.03.05 13:20:35 LOG3[2417:8194]: SSL_accept: 1408F4
> client code has set cipher("ALL");
> there is no client certificate.
>
> client side SSL_connect() return -1;
>
> Its very strange, some times client sends Alert
> message with bad mac code and some times it does
> not.
>
> i have both the logs attached.
hi,
I am using a sample client appli on an embedded
platform trying to connect to s_server on the linux.
client code has set cipher("ALL");
there is no client certificate.
client side SSL_connect() return -1;
Its very strange, some times client sends Alert
message with bad mac cod
On Fri, Feb 14, 2003, Aleix Conchillo Flaque wrote:
>
> hi,
>
> basically, the question is: which are the security benefits of adding a
> MAC to a PKCS#12?
>
Its an integrity check so it stops an attacker changing the contents of the
file, however some implementations will
hi,
basically, the question is: which are the security benefits of adding a
MAC to a PKCS#12?
thanks in advance.
regards,
aleix
__
OpenSSL Project http://www.openssl.org
User Support Mailing
(possibly a resend by my upstream ISP dropped my reverse IP entries
and openssl.org drops those)
Does anyone know why the fingerprint generated by IE 5.2 on the Mac
(OS X 10.2 Jaguar) is different from what OpenSSL shows? OpenSSL's
fingerprint (SHA-1 hash) matches what IE 6 on Windows XP
I created a root certificate with Openssl, then load it into
IE 5.2 on the MAC (latest revision, the one that works with OS X)
The "fingerprint" it displays doesn't match anything I can identify.
The SHA-1 fingerprint of this root as displayed by OpenSSL matches that
displayed by
users with old IE 4 browsers that cannot override the 40 bits limit.
When the problem occurs, I get the following error message :
error:1408F455:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac
The strange thing is that IE4 is not supposed to support SSL3, is it ?
Can anybody
Date: Sat, 21 Dec 2002 22:09:28 +0100 (CET)
Subject: Re: Build failed on Mac OS X
From: Richard Levitte - VMS Whacker <[EMAIL PROTECTED]> sez:
> In message <[EMAIL PROTECTED]> on Sat, 21 Dec 2002
>10:07:31 +0900 (JST), Manabu Kondo <[EMAIL PROTECTED]> said:
>
> man
In message <[EMAIL PROTECTED]> on Sat, 21 Dec 2002 10:07:31
+0900 (JST), Manabu Kondo <[EMAIL PROTECTED]> said:
manabu> Date: Thu, 19 Dec 2002 17:27:23 -0800
manabu> Subject: Build failed on Mac OS X
manabu> From: Eric Mickelson <[EMAIL PROTECTED]> sez:
manabu>
Date: Thu, 19 Dec 2002 17:27:23 -0800
Subject: Build failed on Mac OS X
From: Eric Mickelson <[EMAIL PROTECTED]> sez:
> I'm unable to build OpenSSL 0.9.6h on Mac OS 10.2.2. As you can see in
> the output below I get an undefined symbol. Any help would be greatly
> apprec
I'm unable to build OpenSSL 0.9.6h on Mac OS 10.2.2. As you can see in
the output below I get an undefined symbol. Any help would be greatly
appreciated.
./config --prefix=/usr/local --openssldir=/usr/local/ssl shared threads
make
...
cc -o openssl -DMONOLITH -I../include -fPIC -DTH
Hi,
Does OpenSSL has a function for DES Authentication (or DES MAC)
as described in FIPS 81 - Appendix F ?
I was not able to find it...
Thanks
Vladimir Chovanec
__
OpenSSL Project http
Was able to successfully compile and test 0.9.6g on OS 10.2.2, and can use
the resulting static libraries for apache's mod_ssl.
But, if I build 'shared', and then copy the resulting *.dylib files to
/usr/lib my Mac won't start.
Apple files (currently 0.9.6e; the libssl fil
On Wed, Dec 04, 2002 at 01:56:12PM -0500, Will Day wrote:
> >I tried to verify my cert using:
> >error 20 at 0 depth lookup:unable to get local issuer certificate
> >
> >What does error 20 mean? The cert works when using https, imaps, pop3s,
> >etc.
unable to get local issuer certificate means th
maillog are:
imapd[3166]: Unable to accept SSL connection, host=[209.128.117.3]
prospero imapd[3166]: SSL error status: error:1408F455:SSL
routines:SSL3_GET_RECORD:decryption failed or bad record mac
I captured the packets for both a successful session (OK) and
our troublesome Eudora sessions
I have a problem a ssl connection beeing shutdown inexpectedly.
For debugging thought of using ssldump but I didn't manage to get it
working under Mac OS X.
So, has anyone built and used ssldump with Mac OS X (10.2) and can
give me some instructions on how to do that?
Thanks in ad
true in all accounts.
i know the solution is simply use netscape.
wally
- Original Message -
From:
Jose Correia
(J)
To: [EMAIL PROTECTED]
Sent: Monday, October 28, 2002
00:51
Subject: RE: Converting PEM file to
PKCS12 or PFX for the MacOS (Not Mac OSx
: Auteria Wally
Winzer Jr.Subject: Re: Converting PEM file to PKCS12 or PFX for the
MacOS (Not Mac OSx)...
thanks jose for your response. you're the only one
that took the time to do so. everyone else just sent me read
receipts.
wally
- Original Message -
F
g PEM file to
PKCS12 or PFX for the MacOS (Not Mac OSx)...
Hi
there
I
would think the command used by openssl is the same, irrespective of OS used??
Something like this would work for a PEM certificate:
openssl pkcs12 -export -in someCert.crt -inkey someCert.key
Winzer Jr.
[mailto:[EMAIL PROTECTED]]Sent: 25 October 2002
16:27To: [EMAIL PROTECTED]Cc: Auteria Wally
Winzer Jr.Subject: Converting PEM file to PKCS12 or PFX for the
MacOS (Not Mac OSx)...
has anyone converted pem files into pkcs12, pfx, or der
format explicitly for the MacOS
has anyone converted pem files into pkcs12, pfx, or der format
explicitly for the MacOS versions 8.5 and above?
i have 3 macs that needs CA's loaded. if anyone has done
this by all means give me the lowdown.
i really appreciate everyone's efforts in solving this major
issue, one being the CE
201 - 300 of 369 matches
Mail list logo