Chelo Malagon CSIC RedIRIS wrote:
Hello all,
I'd like to know if there is any way to remove a certificate from a
CRL, for example when the validity time of a certificate which has
been revoked has expired. (like says in the RFC 2459 "An entry may be
removed from the CRL after appering on
Hi, I'm just starting to run apache 1.3.9 with v1.3.7 of the apache-ssl
patch, and openssl 0.9.4
This is all on Caldera Linux, 2.2.10 kernel
I've BEEN running Netscape Fasttrack for a while now..which has built in
SSL support.
I have SSL certificates with my Netscape server, how specifically
-Original Message-
From: Herve Regad-Pellagru
[mailto:[EMAIL PROTECTED]]
Sent: Sunday, September 19, 1999 1:29 PM
To: [EMAIL PROTECTED]
Subject: server/client authentication with stunnel
Hi all !
After trying many hours to get client/server authentication via
certificate
Do you have a copy of CAcert.pem someplace on the client, and have you told
the client-side stunnel where it is?
-Original Message-
From: Herve Regad-Pellagru
[mailto:[EMAIL PROTECTED]]
Sent: Sunday, September 19, 1999 1:29 PM
To: [EMAIL PROTECTED]
Subject: server/client
-Original Message-
From: Aaron D. Turner [EMAIL PROTECTED]
To: Stunnel Maillist [EMAIL PROTECTED];
[EMAIL PROTECTED] [EMAIL PROTECTED]
Date: Friday, September 17, 1999 5:43 PM
Subject: What US companies need to know about RSA
After a lot of research and talking with people from the
Ok, I just read the mailing list archive and found Stephen's about
converting netscape certs, but I'm confused at step 8. Do I put key.db and
cert5.db in the 4.0 directory as themselves or renamed them as the
formerly deleted key3.db and cert7.db.
I'm also confused on step 10. I dont understand
Well if you want to be illegal why bother downloading RSARef.
Also you cant legally donload it anymore because RSA doesnt
offer it for download anymore.
I asked them about it and tey said that i have to by BSAFE or any other
toolkits available fronm them. (I cant even afford buy Books, how the
Hi,
probably my question is a stupid one, but how can I determine the maximal
size of from buffer in RSA_public_encrypt function?
I wrote a simple program that tryes to encrypt the test buffer and I
changed the size of the buffer to find the maximal value. It was 86 bytes
with key size 1024 bit
[error] error:1407609C:SSL
routines:SSL23_GET_CLIENT_HELLO:http request
What am I missing? I have created all the
certificates and have eliminated all daemon errors and config errors, but I get
this error when ever I try to connect to the secure socket port (443)... any
help would be
On Mon, Sep 20, 1999 at 09:42:07AM -0400, Admin Mailing Lists wrote:
Secondly, i have a httpd.conf file for each domain..to setup a domain on
port 80 and 443 how do i specify the SSL cert on port 443 only in that
domain's config file? Do i have to make a virtual host directive for that
port?
On Mon, 20 Sep 1999, Dave Neuer wrote:
-Original Message-
From: Aaron D. Turner [EMAIL PROTECTED]
To: Stunnel Maillist [EMAIL PROTECTED];
[EMAIL PROTECTED] [EMAIL PROTECTED]
Date: Friday, September 17, 1999 5:43 PM
Subject: What US companies need to know about RSA
After a
But if you remove a revoked certificate from the list, how you can
remember
the validity period of a certificate ?
It is removed after expiration. And you always remember the validity
of the period becuase (I hope) you somewhere have a log.
Regards Rene
--
If anyone has a solution for my problem you help would be greatly
appreciated. When I try to make openssl 0.9.4; sha_dgst.c will not
compile properly. The output of the make command follows. I'm using
GCC 2.95.1.
making all in crypto...
( echo "#ifndef MK1MF_BUILD"; \
echo " /* auto-generated
Admin Mailing Lists wrote:
Ok, I just read the mailing list archive and found Stephen's about
converting netscape certs, but I'm confused at step 8. Do I put key.db and
cert5.db in the 4.0 directory as themselves or renamed them as the
formerly deleted key3.db and cert7.db.
Put them in as
Aaron D. Turner [EMAIL PROTECTED] wrote:
On Mon, 20 Sep 1999, Dave Neuer wrote:
-Original Message-
From: Aaron D. Turner [EMAIL PROTECTED]
To: Stunnel Maillist [EMAIL PROTECTED];
[EMAIL PROTECTED] [EMAIL PROTECTED]
Date: Friday, September 17, 1999 5:43 PM
Subject: What US
-BEGIN PGP SIGNED MESSAGE-
The thing with SSL virtual hosts is that they have to have an IP per host
otherwise the web server cand distinguish between them.
You'll allways get the same certificate for all virtual domains.
SSL certificate exchange happens before HTTP so there's no way to
David Murphy [EMAIL PROTECTED]:
1. We have been told that we need a DSA (not RSA) certificate when
[using] Diffie Hellman.
Not true. If you want to use Diffie-Hellman to avoid the patented RSA
algorithms, then obviously you cannot use RSA (leaving only DSA for
the certificates because DH
Hello, I am not in USA. I want to use openssl for
commercial purpose. Are there some legal problem
I must be cautioned ? I have used DSA instead of
RSA , but my browser(netscape 4.5) did not support.
You are allowed to use OpenSSL commercially as long as you attribute
it to the authors (see
18 matches
Mail list logo