I am being pressed to upgrade OpenSSL on one of my vintage Solaris boxes
running 2.8. I've never done it before, I downloaded the latest packages from
sunfreeware which is openssl-0.9.7g-sol8 but have been unable to find much of
anything on the web about the process. One site said to remove th
Hello,
i searched for nearly 1 and a half week to find a solution for my problem,
i want to create certificates with the following commands:
CA.sh -newca
openssl req -days 365 -nodes -new -x509 -keyout my-ca.key -out my-ca.crt
openssl req -days 365 -nodes -new -keyout server.key -out office.csr
http://www.openssl.org/docs/crypto/OPENSSL_Applink.html
--
Ken Goldman [EMAIL PROTECTED]
914-784-7646 (863-7646)
[EMAIL PROTECTED] wrote on 02/16/2008 03:17:10 PM:
> hello,
>
> I use the functions:
>
> r=RSA_generate_key(bits,e,NULL,NULL)
>
> oFile = fopen("MyKey.txt","w");
>
> if (oFil
Please give me some feedback.
Alessandro Pivi - GLOBALcom engineering ha scritto:
Hi,
I am making an application that makes SSL connections. The problem is
that my application will run in a chrooted environment, and will not
be able to access /dev/urandom, but I have a function available whic
> Please give me some feedback.
Why don't you just call RAND_add? This seems like a complicated way to
accomplish nothing.
DS
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
:-)
you are right, I didn't know about RAND_add. I will use RAND_seed
because my data input is a TRNG (true random number generator), so I'm
confident I don't have to worry about entropy.
Thanks
David Schwartz ha scritto:
Please give me some feedback.
Why don't you just ca
Hello, I need to generate a certificate with openssl from an external
aplication ...
My problem is that I need to give openssl all data in only one line.
"openssl req -new -nodes -out prueba.pem -keyout prueba.pem -days 365"
-Country Name
-Organizational Unit ...
-Common Name ..
Hi,
How can I reduce the size of OpenSSL, to an embedded usage?
I need only few cipher, like RSA, SSL 3.0 TLS 1.0...do you if there are
some optimization to make for reduce the size of OpenSSL library ?
Thank you for your help
Tony
Howdy Folks,
I am trying to pretend to be a CA with OpenSSL. I have done this before and
generated certificates to use with private keys on Apache and IMAPs. However,
this time around, I need to pretend to be a CA that signs Tomcat certificates.
There is a minor problem. When I generate a
Have you checked the conf file for the openssl ca? I haven't looked at
it in a long time, but I think you can specify whether an element is
required or optional in it.
Bear
Josh wrote:
Howdy Folks,
I am trying to pretend to be a CA with OpenSSL. I have done this
before and generated cert
Thanks Bear, that did the trick!
On Mon, 18 Feb 2008, Bear Giles wrote:
Have you checked the conf file for the openssl ca? I haven't looked at it in
a long time, but I think you can specify whether an element is required or
optional in it.
__
Dear all,
When I connect to our printer server, the certificate is never verified
correctly. When I specify the CA certificate file manually on the command
line, it works though. The root certificate in question is installed, and
everything looks correct to me. -> ???
Any help how to fix t
> When I connect to our printer server, the certificate is never verified
> correctly. When I specify the CA certificate file manually on the command
> line, it works though. The root certificate in question is installed, and
^
I do not know how to port OPenSSL to other platforms and I do not know who
you are (Victor) but if you do not have anything else to said you better
shut up
Thank You
On Feb 13, 2008 8:07 AM, Victor Duchovni <[EMAIL PROTECTED]>
wrote:
> On Wed, Feb 13, 2008 at 07:26:52PM +0530, Ajeet kumar.S wrot
Hello all
Who can tell me how should i set the crl directory for x509 store.
Is openssl support the this feature?
Now i can set the crl file to X509_store and it works well.
--
Best regards to you and your family
On Tue, Feb 19, 2008, Anri Lau wrote:
> Hello all
>
> Who can tell me how should i set the crl directory for x509 store.
> Is openssl support the this feature?
>
> Now i can set the crl file to X509_store and it works well.
>
CRLs can be in the same directory as certificates. The link format i
16 matches
Mail list logo
