I'm working on the development of a client/server system. We want to ensure
that only our client application can access our server. For that we want to
use a client certificate. We have to hide the client, server and root
certificates securely inside the client application. Are there any
In the doc of SSL_CTX_set_cert_store I only found the hint, that the doc
of the X509_STORE object are not ready. But I will connect my own to
OpenSSL. When will be the doc of the X509_STORE object ready, so that I
can continue my library?
Thanks
Frank
smime.p7s
Description: S/MIME Cryptographic
On Tue, Oct 24, 2006 at 11:23:39AM +0200, Ernst Wei?gerber wrote:
I'm working on the development of a client/server system. We want to ensure
that only our client application can access our server. For that we want to
use a client certificate. We have to hide the client, server and root
best way to do it:
on firsttime client run:
- client generates a private key
- client sends its public key to your server
- server can decide wether or not to sign this key
- server stores the public key
- server sends signed key back to client
- client stores his private key along with the signed
I need a new socket from SSL_accept the same way accept gives me a new
socket, so I have a new socket for each user. How do I do this?
__
OpenSSL Project http://www.openssl.org
User Support
Which of the following do I need to call for every connection and
which once per server?
TLSv1_server_method
SSL_CTX_new
set_tmpDH
SSL_set_fd
SSL_new
__
OpenSSL Project http://www.openssl.org
Hi Mark,
SSL_get_error() returned 0
Carlo
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Mark
Sent: Thursday, October 19, 2006 8:09 AM
To: openssl-users@openssl.org
Subject: RE: SSL_read()
Hi Carlo,
I have a single threaded application where a
Hello,
I'm trying to automate a test against a server with client authentication.
I created a self signed certificate, put it into the servers key database and
imported it into a browsers key store (e.g. M$IE cert store). Everything's
fine
- I'm able to sign on against the server.
So
Hello,
I need a new socket from SSL_accept the same way accept gives me a new
socket, so I have a new socket for each user. How do I do this?
SSL_accept() is linking TCP socket (from accept() for example) with
SSL object through handshake parameters negotiation.
All this happens in application
Hello
SSL_get_error() returned 0
Sometimes checking errno may be useful but 0 error means that
your peer shutdown connection. This may be application specific.
Best regards,
--
Marek Marcola [EMAIL PROTECTED]
__
OpenSSL
I need a new socket from SSL_accept the same way accept gives me a new
socket, so I have a new socket for each user. How do I do this?
With the following very rough (untested, not even compiled) code:
int my_SSL_accept(int s, struct sockaddr *addr, socklen_t *addrlen,
SSL_CTX *ctx, SSL
11 matches
Mail list logo