Dear all,
I've found that the function ERR_print_errors_fp will crash Windows. After I
traced the function, I know that the system crashed at _lock_str inside
fprintf. I tried to copy ERR_print_errors_fp to my program, it works without
crash. Anyone know how to solve it? Is it a problem with DLL?
Hi
I am very new to SSL and am currently trying to use OpenSSL 9.0.5a in a prototype but
I get the following errors :
On the server side:
1:error:1408A0C1:SSL routines:SSL3_GET_CLIENT_HELLO:no shared cipher:s3_srvr.c:769:
and on the client side:
1:error:14094410:SSL routines:SSL3_READ_BYTES:ss
I am looking for a good OpenSSL or SSL book for Linux. Does anyone have
anygood sugestions?? I cannot find any good config books...
Brock Noland
212 3rd St.
Hayward, MN 56043
Check out nolandbros.com
__
OpenSSL Project
One thing that hits smime in a way that it doesn't hit openssl's other
uses (SSL net services) is that you may want to verify an smime message
long after the SSL cert has expired. IMHO it is not, strictly speaking,
the same thing to say that a cert is expired and can't be used to generate
_new_ me
Hi,
Thanks everyone,my problem resolved.
The problem is that when I install the CA certificate,I don't chose to import it
to the local machine physical store,it is described in MSDN kb's article "Using Secure
Sockets Layer, Root Certifying Authority Certificates, and Iisca.exe".
Dr S N He
At 01:21 AM 8/31/00 +0200, you wrote:
>Hi,
>
>somewhere with *.interbusiness.it the tracert dies.
>
>But still I cannot access the site from here. However, I do not want to
>bother the whole list with that problem. I'll keep on trying without
>complainig here :-)
10 mi5-ny2-1.seabone.net (195.22
Hi Alicia,
> A number of months ago, I came across a website that had illustrated
> a MD5 weakness by providing two different pieces of readable English
> plaintext, with one or more words changed from the other, that had
> the exact same MD5 hash.
As far as I know, no-one has published any coll
Hi everybody!
I installed OpenSSL-0.9 in a
machine running AIX 4.3.
When I try to run the demos,
like cli.cpp or sconnect.c, I have this error:
25334:error:24064064:random
number generator:SSLEAY_RAND_BYTES:PRNG not seeded:md_rand.c:538
I’ve tried everything, I
also installe
I can't seem to connect to the link
http://www.consensus.com/ietf-tls/ietf-tls-home.html which
is linked to from the words "Transport Layer Security" in the
Apache documentation.
What I was looking for was something documenting the procedure
for building an Apache/OpenSSL/mod_ssl server that use
Hi,
somewhere with *.interbusiness.it the tracert dies.
Regarding the ORG / COM you were of course right ... I was erroneously
looking for someone else :-(
But still I cannot access the site from here. However, I do not want to
bother the whole list with that problem. I'll keep on trying withou
On Thu, Aug 31, 2000 at 01:03:32AM +0200, Arne Borkowski (borko.net) wrote:
> we can stop it right here ... I connected to their site and they state:
> "UNDER CONSTRUCTION"
Huh? Where? I'm on www.openca.org right now. I don't see any
"Under Construction". Where is it at.
Oh,
On Thu, Aug 31, 2000 at 12:29:44AM +0200, Arne Borkowski (borko.net) wrote:
> Hi Lee,
> DNS does resolve to 195.223.135.22 but there is no response from the server.
> I tried ports 80 and 443. No way ... they MUST be down ... otherwise I don't
> understand ...
Yes way. There are plenty
Hi All,
Newbie question here.
I'm trying to write a simple little HTTP client that connects to a web
server and retrieves a text page that is protected by SSL. IE4 reports the
properties of the security for this page as having a security protocol =
TLS3.1. From a bit of web searching, it looks
we can stop it right here ... I connected to their site and they state:
"UNDER CONSTRUCTION"
That's the mystics behind it :-)
Cheers, Arne
> Hi Lee,
>
> DNS does resolve to 195.223.135.22 but there is no response from the
server.
> I tried ports 80 and 443. No way ... they MUST be down ... o
Hi Lee,
DNS does resolve to 195.223.135.22 but there is no response from the server.
I tried ports 80 and 443. No way ... they MUST be down ... otherwise I don't
understand ...
Arne
> At 10:39 PM 8/30/00 +0200, you wrote:
>On Wed, Aug 30, 2000 at 09:58:21PM +0200, Arne Borkowski (borko
When I connect to our intranet server ( Apache version 1.3.12 running
openSSL-0.9.5a -- URL=https://intra/ ) I can connect using Netscape
version 4.08. Everything works fine here. When I connect with Internet
Explorer I get the following error messages in the error log:
[Wed Aug 30 15:00:41 2
At 10:39 PM 8/30/00 +0200, you wrote:
>On Wed, Aug 30, 2000 at 09:58:21PM +0200, Arne Borkowski (borko.net) wrote:
> > Hi,
> >
> > someone mentioned the URL http://www.openca.org/
> >
> > However, I cannot establish a link with my browser to it. Is the URL wrong?
> > Is the site down? Could somebo
On Wed, Aug 30, 2000 at 03:25:48PM -0500, mandyam wrote:
> Thanks. I noticed that I do have the following code in my server app.
> -
> err = SSL accept(ssl);
> if (err==-1) {
>ERR_print_errors_fp(stderr);
>return err;
> }
> SSL_g
On Wed, Aug 30, 2000 at 09:58:21PM +0200, Arne Borkowski (borko.net) wrote:
> Hi,
>
> someone mentioned the URL http://www.openca.org/
>
> However, I cannot establish a link with my browser to it. Is the URL wrong?
> Is the site down? Could somebody please "make me see" ???
>
The url is correct
Thanks. I noticed that I do have the following code in my server app.
-
err = SSL accept(ssl);
if (err==-1) {
ERR_print_errors_fp(stderr);
return err;
}
SSL_get_cipher(ssl) returns NONE;
At this point I issue SSL_get_peer_certific
Hi,
someone mentioned the URL http://www.openca.org/
However, I cannot establish a link with my browser to it. Is the URL wrong?
Is the site down? Could somebody please "make me see" ???
Cheers, Arne
__
OpenSSL Project
[moved to openssl-users]
On Wed, Aug 30, 2000 at 01:07:45PM -0500, mandyam wrote:
> I have a simple client-server app. performing both client and server
> authentication using the 9.5a toolkit. I am forcing the server to use
> DES-CBC3-SHA by calling
>SSL_set_cipher_li
From:
"raffa aste" <[EMAIL PROTECTED]>
There has been more than a little spam running through this list. Is
there some way we can block the hosts?
I'm thinking a link to orbs may be in order - or perhaps contact the relay
admin and / or the ISP that these jerks connect to.
I realise this migh
Hi ...
i am looking for a solution to integrate a smart card (any smart card you
like, i.e. not each and every smart card, but just one you may choose
(woo, english is complicated sometimes)) into the openssl library. i
found some links pointing to a document called
"Enabling Network Sec
A number of months ago, I came across a website that had illustrated
a MD5 weakness by providing two different pieces of readable English
plaintext, with one or more words changed from the other, that had
the exact same MD5 hash.
I have spend many, many hours looking for that URL (and banging my
-Click
here for Free Video!!http://www.gohip.com/free_video/
xiaohudong wrote:
>
> Hello,
> Ahha,so many answers,thanks everyone.
> Now the problem seens more clear:the acceptable CA list send by IIS is empty.
> But I still don't know why this happens.My plateform is Win2000 Professional
> +IIS5.0,I think I have setup everything.I think that th
I have a client/server application. I'm trying to make the client
connect to the server without verifying the client's certificate, then
for the server to change how it verifies the connection and then to
force renegotiation. I can't get it to work. According to me I'm doing
sort of the same thing
El mié, 30 de ago de 2000, a las 09:21, [EMAIL PROTECTED] escribió:
> hi, once i met a problem just like yours.
> other people helped me and told me that,
> Only if you import the CA root Certificate
> and the pertaining RA Operator Certificate
> into browser can approve the request.
>
> have a t
Hello,
Ahha,so many answers,thanks everyone.
Now the problem seens more clear:the acceptable CA list send by IIS is empty.
But I still don't know why this happens.My plateform is Win2000 Professional
+IIS5.0,I think I have setup everything.I think that the CTL controls which CA is
acc
> Rosario Riccio wrote:
>
>
> I use ActiveX certenr3.dll (version 4.70.0.1150): it seems that key
> generation procedure is OK, but when I try to sign the certificate
> request in my Perl script with
>
Simple answer, don't use certenr3.dll. Its broken and has nasty security
holes. Use Xenroll.
Hi,
I have finally generate a cert for IE5 with CN, C, S, L, O,
OU.all is OK!!!
But when I tryed to add Email Address in my certificate
request form, here are the problems...
I use ActiveX certenr3.dll (version 4.70.0.1150): it seems
that key generation procedure is OK, but when I t
SendFlowersAmerica is proud to introduce FlowerFunds--
This unique new concept will provide an income flow for your
organization for years to come. Your organization is invited to
explore the possibilities of participating in FlowerFunds.
$FlowerFunds is an individualized fund r
Hi,
I posted the e-mail below to [EMAIL PROTECTED] yesterday, but
have had no reply yet, so I thought I'd try this list too.
--
I'm trying to build OpenSSL 0.9.5a on Solaris 2.4, using the Sun
WorkShop Compiler v3.0.
After running
./config --prefix=/usr/local --openssldir=/usr/local/o
Sorry... I haven't been following this discussion, so forgive me if this is
totally irrelevant.
But I'll let you know what my experience with MS IIS and client certificates
is.
The root certificate must be installed on the server in a special way.
Otherwise the MS IE clients fail to show your per
35 matches
Mail list logo
