Ives Steglich wrote: > > hmm, since the openssl 0.9.7d is broken (for the pkcs#7) the scep > interface of openca can't work properly - you should test it with an > 0.9.7c for example (you may install a separate openssl version, for > testing with openca) - i just don't remember if there was a patch for > 0.9.7d to fix the broken pkcs#7 problems...
yes - there is a patch in the openssl cvs - actually they patched it a few days after the release but didn't release the patch or a knew version for a loooong time, since it was not considered a scurity bug... the 0.9.7e should be fixed, this is also the reason why martin discovered some time - that sscep doesn't work with 0.9.7d ;) since the main used part for scep is broken in this openssl release ;( so DON'T use an unpatched openssl 0.9.7d i just look up the cvs-id from the openssl cvs so you can get the patch or try the e version... it should contain the patch and so have a working pkcs#7 part greetings dalini ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
