Is there a way to see something like AES128-SHA is okay with TLSv1.2, but not
with SSLv3?
--
Principal Security Engineer
Akamai Technology
Cambridge, MA
> From: owner-openssl-users On Behalf Of Danyk
> Sent: Monday, November 25, 2013 07:26
> Im trying to add a custom Extension to a CSR using openssl API's:
>
I assume you know 'req' can be configured to create custom extensions
(if a bit clumsily) but you have reasons for coding it yourself inste
FYI:
An RSA cipher algorithm is not a block cipher. It treats the entire
message as a very big integer. The better way is to use the RSA
cipher algorithm to transmit some symmetric cipher key for AES or
another block cipher algorithm and use the block cipher to encrypt
and decrypt very big files
Excellent, just what I was looking for and incidentally a source I can cite
to my client. Many thanks!
On 25 November 2013 17:24, Ralph Holz wrote:
> Hi,
>
>
> > Thanks for your response. I'm sorry my question wasn't clearly defined
> > (it was "will this file work correctly? If so, why?"), but
Hi Erwann,
Thanks for your response. I'm sorry my question wasn't clearly defined (it
was "will this file work correctly? If so, why?"), but you seem to have
answered nonetheless, thank you.
As a followup question, is there a way to include these certs in the way
originally intended by the mozill
Bonjour,
Le 25/11/2013 17:14, Sassan Panahinejad a écrit :
I am dealing with a CA certificate bundle, similar to this one:
https://github.com/twitter/secureheaders/blob/master/config/curl-ca-bundle.crt,
like the example, the one I am dealing with was automatically
generated from mozilla's cert
Hi,
I am dealing with a CA certificate bundle, similar to this one:
https://github.com/twitter/secureheaders/blob/master/config/curl-ca-bundle.crt,
like the example, the one I am dealing with was automatically generated
from mozilla's certdata.txt.
Consider the certificate labelled "Bogus live.co
Hi,
I am dealing with a CA certificate bundle, similar to this one:
https://github.com/twitter/secureheaders/blob/master/config/curl-ca-bundle.crt,
like the example, the one I am dealing with was automatically generated
from mozilla's certdata.txt.
Consider the certificate labelled "Bogus live.co
hi!
I'm in trouble to use X509_verify and X509_CRL_verify function.
i create a certificate,then sign it and verify it. Sometimes I would get
verify failure when I repeat that.
i checked the public key and the private key were both correct.
the error strings:
error:0407006A:rsa routines:RSA_paddin
OpenSSL supports T61String data type, but doesn't provide any conversion
helper.
You should avoid T61String if you can, the T.61 standard that defined it
has been withdrawn before 1993.
So unless you're playing with antique software that can't work with an
UTF8 string, prefer UTF8String.
--
Er
Ø We need to send CN attribute in TeletexString format for ASN1DN Id and
certificate.
'grep -I t61 apps/*.c' might be useful.
/r$
--
Principal Security Engineer
Akamai Technology
Cambridge, MA
Hi,
We need to send CN attribute in TeletexString format for ASN1DN Id and
certificate.
Does openssl support for TeletexString/ T61String(T61String, an arbitrary
string of T.61 (eight-bit) characters.) ?
What are function user to read the T61String format value ?
Could someone help me with
I am facing the same issue on openssl-1.0.1e
Is there any workaround for it ?
--
View this message in context:
http://openssl.6102.n7.nabble.com/SSLv3-handshaking-fails-on-solaris-tp9216p47447.html
Sent from the OpenSSL - User mailing list archive at Nabble.com.
___
Hi all,
Im trying to add a custom Extension to a CSR using openssl API's:
struct stack_st_X509_EXTENSION *exts = NULL;
X509_EXTENSION *ex;
exts = sk_X509_EXTENSION_new_null();
ASN1_OCTET_STRING *os = ASN1_OCTET_STRING_new();
nid = OBJ_create("1.3.6.1.4.1.12345", "End Entry Type", "My En
14 matches
Mail list logo