Hi Shlomi
You would need to include certificate related directives under the section
defined for each virtual host within the httpd.conf.
e.g:
VirtualHost server_name:port_number
Port 'port_number'
ServerName server_name
SSLCertificateFile /location/certificate_file_name
SSLCertificateKeyFile
Few months back, I had something similar in mind. But what I needed was just
to have RSA and a few symmetric ciphers on Palm. Well.. I didn't know of the
SSLeay port for Palm at that time so I modified OpenSSL's crypto lib a
little. Anway, my project is scrapped now as the RSA private operations
Salam,
Signing a request has no relation with signing requests.
To do so try what follows:
1/ Request Generation:
openssl req -new -out cert.req
2/ request Signature:
openssl req -ca -config path/openssl.cnf -in cert.req -out cert.pem
path: path to openssl.cnf configuration
On Fri, Nov 30, 2001 at 09:06:10AM +0100, Michael Lissner wrote:
Hallo,
eine Frage zum Einsatz von OpenSSL unter Windows NT.
Als Http Server verwende ich Apache 1.3.20 für NT,
PHP4.0.6 als CGI und MySQL als Datenbank.
Borland Builder 5.5 wird als Compiler eingesetzt.
Mit welchem
hi,
this will work for unique port numbers only.
Here's no chance to run a bunch of standard-SSL virtual hosts
on one single 443 port and I guess it was the question.
One could do that on different IP numbers
regards,
Vadim
On Fri, 30 Nov 2001, Amol Natu wrote:
Hi Shlomi
You would need to
Hello!
Is there a way for a CGI script to find out how long the currently used
SSL session is still valid, in other words, how many seconds of
SSLSessionCacheTimeout still remain?
I asked this question already on the modssl mailing list, but I got no
answer, so I thought I'd ask the OpenSSL
I am using Windows 98SE and OpenSSL0.9.6b
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Dr S N Henson
Sent: Thursday, November 29, 2001 7:15 PM
To: [EMAIL PROTECTED]
Subject: Re: running OpenSSL on Windows 32
Jean-Gabriel Duquesnoy wrote:
From: [EMAIL PROTECTED]
crh $ USER_CCDEFS := _VMS_V6_SOURCE=1,__VMS_VER=6000,__CRTL_VER=6000
crh $ USER_CCDISABLEWARNINGS := PREOPTW
crh
crh $ @makevms all norsaref debug decc
crh
crh
crh The following are the errors that I got as a result of the command. (There
crh would have
Hi,
I have successfully downloaded and compiled OpenSSL
on my Windows machine. Unfortunately, when I use it
to create a CA certificate, when asking for the DN,
the first question (Country Name) is displayed, but
the second question is displayed without giving me
any chance to enter the Country
Hi, I'm running OpenSSL 0.9.6 and I want to register
with a CA. Is there a detailed Procedure for doing this? I have tried using the
MAN pages with no luck.
Joe Barty
Network Engineer
Digital Controls Corp
305 Pioneer Blvd
Springboro, Oh 45066
Base: (937) 656-3708
Work: (937)
Hi,
I'm currently playing with the EVP interface,
I'm afraid of having misunderstood some basic encryption
behavior or policy.
Lets say i want to encrypt a series of short messages,
and i want a third party to be able to decrypt those messages.
my thought are :
i must init IV to a value each
Hi all,
is there a way to compile Crypt-SSLeay-0.35
using a aCC B3910B A.03.30
on hp-ux 11.0?
tia
Best regards
Thomas Brix
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
Jean-Gabriel Duquesnoy wrote:
I am using Windows 98SE and OpenSSL0.9.6b
Hmmm. That should work. Have you compiled it on a WINNT box or enabled
the WINNT features? That could cause problems because the work around
isn't enabled on WINNT because it isn't needed.
What output does:
openssl
On Mon, Nov 26, 2001 at 05:47:16PM -, Andy Schneider wrote:
If I don't renogiate, can I put a read () and write () down in an
SSL_connection in two different threads at the same time?
No.
--
Bodo Möller [EMAIL PROTECTED]
PGP
On Fri, Nov 30, 2001 at 10:54:22AM +0100, Manfred Haertel wrote:
Hello!
Is there a way for a CGI script to find out how long the currently used
SSL session is still valid, in other words, how many seconds of
SSLSessionCacheTimeout still remain?
I asked this question already on the modssl
Hi
If I have a PKCS#7 that is only encrypted (pkcs7_enveloped) , how can I then
be sure of the integrity of the data?
With a signed PKCS#7 you can verify the signature, but what if there is no
signature. Does the PKCS#7 format itself make it impossible to tamper with
such an encrypted blob or is
Hello,
I am trying to build 64-bit Openssl libraries on a Solaris 8 box. I am working with
the 0.9.6b source with gcc 3.0.2 (with 64-bit support, of course! :). I have not had
any problems building any other 64 bit applications with this compiler. Everything
compiles fine, but when I run
Thanks for the advice. I was able to get an alternate /dev/urandom
package working.
Soo
On Wed, 28 Nov 2001, Lutz Jaenicke wrote:
On Wed, Nov 28, 2001 at 08:47:13AM +0100, [EMAIL PROTECTED] wrote:
Solaris does not support the device /dev/urandom which is necessary to seed
the PRNG by
More specifically, each SSL-enabled virtual host must have as unique public
IP with certificates that include the domain name that corresponds to the
address. You cannot have an SSL-enabled name-based virtual host.
Keary Suska
Esoteritech, Inc.
Leveraging Open Source for a better Internet
Hello,
So, I'm a relatively clueless desktop support type, who somehow has ended
up trying to build and secure a Solaris 8 box. Woe is me, most especially
because I can't seem to get OpenSSH to #$@! configure.
I think the problem is with my OpenSSL install, and here's why: When I run
configure
Hellan,Kim KHE wrote:
Hi
If I have a PKCS#7 that is only encrypted (pkcs7_enveloped) , how can I then
be sure of the integrity of the data?
With a signed PKCS#7 you can verify the signature, but what if there is no
signature. Does the PKCS#7 format itself make it impossible to tamper
Yasir Ali wrote:
Hi,
I am just starting on my thesis which involves ssh and ssl
usage.
I was running the CA.pl script. I created a new CA,
and then i created certificate sign request and finally when
I did ./Ca.pl -signreq, it gave me the following error
CA.pl -newca -worked
CA.pl
From: Fish Flowers [EMAIL PROTECTED]
fish So, I'm a relatively clueless desktop support type, who somehow has ended
fish up trying to build and secure a Solaris 8 box. Woe is me, most especially
fish because I can't seem to get OpenSSH to #$@! configure.
fish
fish I think the problem is with my
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
OpenSSL users and developers,
I have struggled with getting certificates in order on my servers, and I
have seen others struggle with this too. It became necessary to do a proper
job, so I decided I should write up what I had to learn as a HOWTO.
I would like to contribute this for posting on
Hi,
I'm newby, so I hope not to bother you with some stupid question or
misunderstud concepts.
I have been reading information of how to verify server certificate
signed by a root CA in a client.
Form what I read, I have to check the server certificate signature with
the
26 matches
Mail list logo
