CA certificate and signature algorithms

Hi All, I have a CA certificate with Signature Algorithm md21RSA. Can I create a server certificate with Signature Algorithm sha1RSA and sign the server certificate using the above CA certificate. Will there be any problems. Thanks in advance. Jaya

Re: crlDistributionPoints in a certificate request

Hello everbody, in the end I was able to solve my problem and here is what I’ve done. If you want to follow my example just be careful and read the warnings in the other comments concerning this topic. As Patrick suggested I was in need of the copy extensions but at that time I just didn’t know

PKCS7 signature verification fails

Hi, I am trying to use openssl to sign documents and store detached signatures in PKCS7 format. First, I sign the document : openssl smime -sign -in document.txt -out document.txt.sign -signer certs/jcr.crt -certfile certs/ca.crt -inkey private/jcr.key When I check the signature, it is OK :

SSL based client authentication

Hi, I'm writing my own webserver and I want it to be able to do SSL based client authentication. It can already do HTTPS, but when I try to do the SSL based client authentication, the connection gets dropped. I use the following routine to bind a SSL socket. SSL_CTX *ssl_binding(char *keyfile,

Re: PKCS7 signature verification fails

On Wed, Feb 07, 2007, Jean-Claude Repetto wrote: Hi, I am trying to use openssl to sign documents and store detached signatures in PKCS7 format. First, I sign the document : openssl smime -sign -in document.txt -out document.txt.sign -signer certs/jcr.crt -certfile certs/ca.crt

Cipher selection patch feedback?

On Wed, Jan 31, 2007 at 01:27:23AM -0500, Victor Duchovni wrote: Any feedback? Will the patch be considered? I imagine Sun is not the first or last vendor to tinker with the algorithms they ship in libcrypto, and that having robust behaviour in libssl when they do so is a worthwhile goal. Making

problem of OpenSSL on MIPS R3000

Hello, everyone, I just cross compile the OpenSSL 0.9.7 under linux by mipsel-linux-gcc for MIPS R3000, no error occur during the compiling process. But, when I put the result lib to the hard platform, the openssl routines can not be carried out and “segment fault” occurs. Why? Does the

Re: Library loading issue on multi processor Windows 2003

As a state of art information: one of our customers that had this issue removed a CPU from his computer, and the issue vanished ! 8-) Unfortunately, not all of our customers agree to downgrade thier computers, so, please, if anyone has an advice about how to handle this issue, it will be welcome !