On Sat, Aug 20, 2005 at 10:54:13PM +0200, [EMAIL PROTECTED] wrote:
Good evening,
Is a difference between:
openssl req -x509 ...
and:
openssl ca -selfsign ...
?
I can use a certificate created using the first way as certificate in the
CTL of MS IIS ver. 5.1 while the second
Hello,
I have a problem with OIDs during CA root certificate renewal.
I am using openssl 0.9.6b.
I've performed the following steps:
1) Converting existing certificate to CSR:
openssl x509 -x509toreq -in old_cert.pem -signkey PrivKey.pem -out careq.csr
2)Signing the request with existing private
Hi, All
I just recently started working with SSL. Unfortunately, the online
documentation is not quite complete as I expected. Maybe I am just not
looking at the right place. If so, can someone point me to some
tutorials that are good for new comers?
I downloaded some sample code. One
Hi all...I'm new to the list and for the most part OpenSSL as well...so
sorry if I use the wrong terminology. I've searched the list archives,
as well as Google, and cannot figure this out. I'm trying to create a
CA certificate, as well as certificates for users using a script (called
from a web
-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
McCann, Brian wrote:
| Hi all...I'm new to the list and for the most part OpenSSL as well...so
| sorry if I use the wrong terminology. I've searched the list archives,
| as well as Google, and cannot figure this out. I'm trying to create a
|
Oliver Leitner wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: RIPEMD160
McCann, Brian wrote:
| Hi all...I'm new to the list and for the most part OpenSSL as well...so
| sorry if I use the wrong terminology. I've searched the list archives,
| as well as Google, and cannot figure this out. I'm
In reply to you both, the PHP part I got down..that's not the problem.
It's what to tell openssl to do. I'm trying now to make a cnf file to
make a CA without prompting, then to make a certificate req and sign it
without prompting...at least now I know I'm in the right direction.
Thanks!
--Brian
You need to set the cnf so it won't prompt.
Here's a little excerpt from a shell script:
cat @eof $CONFFILE
# openssl x509 extfile params
extensions = extend
[req] # openssl req params
prompt = no
distinguished_name = dn-param
[dn-param] # DN fields
C = US
ST = WA
L = Yadda
O = Yadda
OU = Chain
I'm using s_client and s_server tools to create a ssl connection and
send data over a ssl connection.
I'm observing the traffic using ssldump with the -Adx flags.
The first time I type text into s_client program I see 2 application
data records.
I'm not sure what the purpose or what is in the
Matt Rodriguez [EMAIL PROTECTED] writes:
I've been looking at the specifications and figuring out what the
data in the application
data record means. If anybody can explain this to me in greater
detail, that would
be great.
The application data is encrypted. Everything after the 5th byte
is
Hi,
While creating self signed certificates and certificate requests use -subj to specify the the subject name and -nodes for not prompting for password (private key will not be encrypted)
If you want the password to be encrypted generate the rsakey using genrsa command with -passout option and
Hi all,
I'm using OpenSSL 0.9.8 on a 64-bit HP-UX 11i v1 platform as a part of
my effort to compile libssh2 c-library (http://www.libssh2.org/) that is
using openssl resources. OpenSSL compiles nicely and passes 'make test'.
When trying to use it to create a ssh2 connection, I get complaints
12 matches
Mail list logo