Isn't SSL/TLS part of javax.security? At any rate, this is not a good
place for Java questions...
The IBM keyman program (google search...) seems to have better support for
some standard formats than the standard keytool does.
/r$
--
STSM, Senior Security Architect
SOA Appliances
Appl
Very Very Usefull
Thanks.
My client is working. Now I'm starting to develop server!
Vincenzo
Bernhard Froehlich ha scritto:
Vincenzo Sciarra wrote:
I want to verify that a client certificate is issued by an acceptable
CA.
Thanks
You'd do it the same way as verifying that the server's CA is
Hi,
I have the below certificates with me
1.Server certificate : PEM format
2.Private Key in : PKCS8 format
3.Server Root Certificate in : PEM format
Cannay one tell me How to convert the above into Java keystore(JKS) FORMAT.
Is there any tool available for conversion? Does keytool under
Hello,
> Thanks, I will. What's the largest value this can be set to? Or is it
> better to do chunked reads?
For SSL maximum record data size is 2^14 which may be extended two times
by setting SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER.
But this is logical size of SSL record which means that to real data
Thanks, I will. What's the largest value this can be set to? Or is it
better to do chunked reads?
Carlo Agopian
[EMAIL PROTECTED]
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Marek Marcola
Sent: Friday, October 06, 2006 11:52
Hello,
> Is there a way to overcome the 16k limit besides breaking down the
> message/response?
Try to set SSL_CTX option SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER
to extend SSL buffer to 32k.
Best regards,
--
Marek Marcola <[EMAIL PROTECTED]>
__
Is there a way to overcome the 16k limit besides breaking down the
message/response?
Carlo Agopian
[EMAIL PROTECTED]
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Krishna M Singh
Sent: Thursday, August 24, 2006 2:39 AM
To: open
> David,
> > > I assume this a reason why OpenSSL has the locking callback
> > > functions.
> > No. OpenSSL has the locking callback functions so it can
> > protect internal
> > structures. For example, if two SSL objects internally reference the
> > objects.
> I am still confused as to why the
- Original Message -
From: "Darryl Miles" <[EMAIL PROTECTED]>
To:
Sent: Friday, October 06, 2006 4:50 PM
Subject: Re: Need help: Understanding SSL object in multi-threaded
environment
> Mark wrote:
> > I think it would be helpful for me. If we need to prevent calling
> > SSL functions
> > Is it the case that both SSL_read and SSL_write modify the same
> > part of the
> > SSL object ?
>
> Yes, but that's not the issue.
Well ... if this is not the issue? then what is ?
> > Could you give some more details about this? Could you throw some
> > more light
> > on the ssl state maint
Hello I’ am recently trying to develop a pocket
PC client with OPENSSL and for testing purpose first I have done a “GET /pict.jpg
HTTP/1.0\r\n\r\n”
request to an
HTPPS server (apache).
I
must use non-blocking socket way so I use BIO_get_fd to get the socket and then
do select because I nee
Hi,
I want to write a simple HTTPSClient and server using JAVA with server and client authentication.
I have the below certificate's and private key's for server and the client in PEM and PKCS8 format.
Root certificate : PEM formatcertificate : PEM formatPrivate Key : PKCS8
Can we use PEM and PKCS8
Hi friends,
Can any body tell me ,how can we configure the openssl with .net web
applications.
Thanks in Advance!!!
--
View this message in context:
http://www.nabble.com/open-ssl-configuration-with-.net-tf2395392.html#a6678878
Sent from the OpenSSL - User mailing list arch
Darryl,
> But the SSL_() API set is not re-entrant with respect of the same
> SSL * handle. So you have to serialize all API calls upon
> the same SSL
> * handle. This is why you can't mix SSL_read() with any other
> SSL_() API call on the same handle instance at the same time.
I t
Mark wrote:
I think it would be helpful for me. If we need to prevent calling
SSL functions on the same object (i.e. SSL_read() and SSL_write())
from different threads then I would think that OpenSSL would not need
any internal synchronisation, unless it creates its own threads
internally.
But
All,
Has anyone ever done this? ARM compiler (not the GNU one)
has very limited standard library and many headers are missing. I only need to
have RSA, but unfortunately, when compiling RSA it drags lots of stuff from the
rest of the crypto folder complaining about missing headers all a
David,
> I'm not sure why more internal details of how OpenSSL works would be
> helpful. I've already explained the external interface.
I think it would be helpful for me. If we need to prevent calling
SSL functions on the same object (i.e. SSL_read() and SSL_write())
from different threads then
Forwarded from Mike Hambidge so that the answer will hopefully find its
way into the archives:
Mike Hambidge wrote:
Tried to post this response to the openssl-users mailing list but
apparently majordomo doesn't like my mail server :/ So anyhow, I
figured I'd email you direct:
I was wonderin
David,
> > I assume this a reason why OpenSSL has the locking callback
> functions.
>
> No. OpenSSL has the locking callback functions so it can
> protect internal
> structures. For example, if two SSL objects internally reference the
> objects.
I am still confused as to why the locking callb
19 matches
Mail list logo
