I put together a multi-way messaging system supporting over 2000
simultaneous persistent connections. During my initial design, I was
concerned that the encryption would become an issue, especially with
that many connections. So, we purchased some pretty burly hardware to
support the
On May 10, 2006, at 11:05 PM, Stefan Walter wrote:
i dont use s_client(1). i wrote my own server, but if i send to
this server
QUIT then the server exit by themself.
I'm not sure how we can find a problem in code that you wrote
yourself and
don't tell us very much about. How exactly are
You might want to check out SSL_set_session() and friends. This will
allow your programs to reuse a session and avoid the negotiation.
On May 7, 2006, at 8:03 AM, Marco Rossi wrote:
Dear all,
I'm working with an xml messaging protocol where
messages are exchaged by means of ssl
http://www.openssl.org/support/faq.html#LEGAL
On May 3, 2006, at 12:09 AM, Ambarish Mitra wrote:
Hi all,
A question on licensing issue: For using openssl libraries for
commercial
applications, is there any licensing issues? Do we have to attach any
license for the same?
AM.
You can have as many commonNames as you want. That goes for
subjectAltName fields too. I do that on an apache server (not using
TLS) that needs to host more than one SSL site. Every browser I've
used is okay with certs. that have multiple CN's.
On Nov 4, 2005, at 6:27 AM, [EMAIL
wrote:
Joseph Oreste Bruni wrote:
You can have as many commonNames as you want. That goes for
subjectAltName fields too. I do that on an apache server (not
using TLS) that needs to host more than one SSL site. Every
browser I've used is okay with certs. that have multiple CN's.
But he
The old unix crypt function would only use the first eight characters
of any password.
On Oct 23, 2005, at 2:10 AM, Nadav Golombick wrote:
What is the correct procedure if I come to a situation where the
password length is too big for the given buffer.
--
Nadav Golombick
The permissions you need on these files are "444" not "777", but that's not your problem.I believe that mysql runs as a user other than root. On most systems a seperate "mysql" user account is created and the daemon switches to that account at startup.The EACCESS error would mean that some
The man page for open(2) gives these following reasons for EACCESS:
[EACCES] Search permission is denied for a component
of the
path prefix.
[EACCES] The required permissions (for reading and/or
writing)
are
b64 is a filter BIO, it won't hold on to your data. You need to
append a memory BIO to the back end of the filter bio so that your
output can be accumulated.
There are samples on how to do this in the OpenSSL book as well as a
rather lengthy discussion on BIO's in general.
Also
PROTECTED] On Behalf Of Joseph Oreste
Bruni
Sent: Thursday, October 13, 2005 2:46 PM
To: openssl-users@openssl.org
Subject: Re: Base64 Help
b64 is a filter BIO, it won't hold on to your data. You need to
append a
memory BIO to the back end of the filter bio so that your output
can
You can encode any data in base64 using the openssl "enc" command. Suppose I have a file named "hello" that contains the text "hello world". The command$ openssl enc -base64 -in hello -out hello.b64will encode the file and output the data to "hello.b64". Check the man pages for the "enc" command
The easiest way to do this would be to use a "base64" BIO as a data filter.At this point I would highly recommend this book:http://www.opensslbook.com/-JoePS: My earlier comment about depleting entropy was entirely facetious. :)On Oct 11, 2005, at 1:50 PM, Adam Jones wrote: Thanks! I have been
Try not to use that common indiscriminately as it will deplete
valuable entropy from your system.
-Joe
On Oct 10, 2005, at 1:58 PM, Adam Jones wrote:
Thanks!
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kent Yoder
Sent: Monday, October 10, 2005
It might be because neither the commonName nor the subjectAltName
make any reference to the name of your web server. (Just a guess.)
On Oct 7, 2005, at 9:49 AM, Felix Dorner wrote:
hi,
i am playing arount with certificates created and signed from
/demos/selfsign.c. I replaced some of the
Probably not since the certificate has been signed by its issuer. Any
changes would render the signature invalid.
On Jul 13, 2005, at 3:45 PM, David Templar wrote:
I am having a lot of problems importing a certificate made in
openssl into a phone, but I can get a keytool certificate
I found this via google
http://www.cs.rochester.edu/users/faculty/nelson/courses/cryptology/
notes/lecture_19.txt
On Jul 12, 2005, at 8:28 PM, Ted Mittelstaedt wrote:
md5 is not patented. des and 3des the patent expired. Blowfish
was originally published
not patented. That's all I
Check out the openssl s_client and openssl s_server command line
tools. These will help you isolate which side might be causing the
problem.
On Jul 8, 2005, at 9:15 AM, Ertel, Holger wrote:
Hi,
I’m a newbie in OpenSSL.
I wrote me a SSLClient and a SSLServer for testing OpenSSL under
No (with qualifications). If the server sends you the entire
certificate chain, then yes you can retrieve the root certificate
since it was sent to you.
If the server only sends you it's certificate, then all you have is
the server's pubic key digitally signed by the issuer. The issuer's
This is also a function of your web server. If you are running Apache
you can use mod_ssl.
On May 28, 2005, at 7:47 AM, David wrote:
Hello.
I am trying to connect to a secure (https) webserver using PHP.
The problem is that PHP needs to have https as a registered stream
(which it
20 matches
Mail list logo
