Openssl s_client connection closes within few seconds

2012-07-07 Thread Sebastian Raymond
Hello, I have set-up the apache2 on my linux machine. Everything worked fine previously. But now, when I try to use openssl s_client command to connect to the machine, SSL handshake is completed successfully. But within few seconds the connection closes automatically. When I used -debug option,

Linux Openssl, Invalid arguments ' Candidates are: int BN_set_word(bignum_st *, ?) '

2012-07-07 Thread Giuseppe Barbieri
I am using OpenSSL for a cuda project. I just imported all the project from win to linux (Eclipse) I solved all the dependencies except this annoying error: Invalid arguments ' Candidates are: int BN_set_word(bignum_st *, ?) ' for this line: BN_set_word(two, 2); and the function itself

Re: Linux Openssl, Invalid arguments ' Candidates are: int BN_set_word(bignum_st *, ?) '

2012-07-07 Thread Jeffrey Walton
On Sat, Jul 7, 2012 at 9:14 AM, Giuseppe Barbieri elec...@gmail.com wrote: I am using OpenSSL for a cuda project. I just imported all the project from win to linux (Eclipse) I solved all the dependencies except this annoying error: Invalid arguments ' Candidates are: int

openssl building under windows

2012-07-07 Thread Mameb Ibrahimov
Всем привет. С чем может быть связана ошибка gcc компиля: unrecognized option -mno-cygwin? Hi all. What is the reason of gcc: error: unrecognized option -mno-cygwin while building openssl? Building process: - run MSYS - configure shared zlib-dynamic mingw - make build_libs - Output:

Sign public key without having CSR or private key?

2012-07-07 Thread proper
Hello, is it possible to sign a foreign SSL public key without having CSR/private key? Background: Because the public root CA's failed at least twice (DigiNotar, Comodo), I'd like to pin a SSL certificate from a website I have no control over. (Therefore I no access the the private key and can

Re: Sign public key without having CSR or private key?

2012-07-07 Thread Jeffrey Walton
On Sat, Jul 7, 2012 at 2:27 PM, pro...@secure-mail.biz wrote: Hello, is it possible to sign a foreign SSL public key without having CSR/private key? Background: Because the public root CA's failed at least twice (DigiNotar, Comodo), I'd like to pin a SSL certificate from a website I

Re: Re: Sign public key without having CSR or private key?

2012-07-07 Thread proper
noloa...@gmail.com wrote: You pin a certificate by whitelisting expected server certificates (possibly thumbprints). How to do that? There's usually no need to sign another's key or certificate (I've never done it that way, and never seen it done that way). A little more background...

Re: Re: Sign public key without having CSR or private key?

2012-07-07 Thread Jeffrey Walton
On Sat, Jul 7, 2012 at 4:02 PM, pro...@secure-mail.biz wrote: noloa...@gmail.com wrote: You pin a certificate by whitelisting expected server certificates (possibly thumbprints). How to do that? My bad. You usually do it pragmatically in an On Connect callback or delegate. I don't have any

Re: Re: Sign public key without having CSR or private key?

2012-07-07 Thread Jeffrey Walton
On Sat, Jul 7, 2012 at 4:02 PM, pro...@secure-mail.biz wrote: noloa...@gmail.com wrote: You pin a certificate by whitelisting expected server certificates (possibly thumbprints). [SNIP] So my original question was how do I get wget to verify the torproject.org fingerprint [4] without

Re: Re: Re: Sign public key without having CSR or private key?

2012-07-07 Thread proper
noloa...@gmail.com wrote: On Sat, Jul 7, 2012 at 4:02 PM, pro...@secure-mail.biz wrote: noloa...@gmail.com wrote: You pin a certificate by whitelisting expected server certificates (possibly thumbprints). [SNIP] So my original question was how do I get wget to verify the

Re: Sign public key without having CSR or private key?

2012-07-07 Thread Dr. Stephen Henson
On Sat, Jul 07, 2012, pro...@secure-mail.biz wrote: Hello, is it possible to sign a foreign SSL public key without having CSR/private key? Background: Because the public root CA's failed at least twice (DigiNotar, Comodo), I'd like to pin a SSL certificate from a website I have no

Openssl s_client connection closes within few seconds

2012-07-07 Thread Sebastian Raymond
Hello, I have set-up the apache2 on my linux machine. Everything worked fine previously. But now, when I try to use openssl s_client command to connect to the machine, SSL handshake is completed successfully. But within few seconds the connection closes automatically. When I used -debug option,