Am 19.11.2012 15:45, schrieb John Zavgren:
So, what is a list of easy-to-follow code examples? Here are some
suggestions:
1.) read private key and a message from a file: encrypt message with
private key, write encrypted buffer to (another) file.
2.) read cert and private key, read file, compute
On 11/19/2012 5:19 AM, Thomas J. Hruska wrote:
On 11/13/2012 11:34 AM, Sanford Staab wrote:
I have been struggling with openssl for a few months now writing batch
scripts on windows trying to make a .net web client with a client
certificate work with 2-way ssl against an apache web server.
Do y
On Mon, Nov 19, 2012 at 9:45 AM, John Zavgren wrote:
> Thomas:
> You make very good suggestions. Of them all (aside from the use of tact in
> approaching the developers :-) ), I think that easy-to-follow code examples
> would improve the openSSL experience more than anything else you identify.
>
way?")
Charles
From: owner-openssl-us...@openssl.org
[mailto:owner-openssl-us...@openssl.org] On Behalf Of John Zavgren
Sent: Monday, November 19, 2012 6:45 AM
To: openssl-users@openssl.org
Subject: Re: I can't believe how much this sucks
Thomas:
You make very good suggestions. Of t
Thomas:
You make very good suggestions. Of them all (aside from the use of tact in
approaching the developers :-) ), I think that easy-to-follow code examples
would improve the openSSL experience more than anything else you identify.
These examples could even provide a natural context for the "cook
On Sun, Nov 18, 2012 at 11:19 PM, Thomas J. Hruska
wrote:
> On 11/13/2012 11:34 AM, Sanford Staab wrote:
>>
>> I have been struggling with openssl for a few months now writing batch
>> scripts on windows trying to make a .net web client with a client
>> certificate work with 2-way ssl against an a
On 11/13/2012 11:34 AM, Sanford Staab wrote:
I have been struggling with openssl for a few months now writing batch scripts
on windows trying to make a .net web client with a client certificate work with
2-way ssl against an apache web server.
Do you guys just want to continue to answer questi
"Sanford Staab(Gmail)" wrote:
I think it is high time for a v2 of openssl, a rewrite almost from scratch, removing
support for older protocols and ciphers and simplifying it down with full TDD from
start to finish to really correct this problem.
So why don't you simply switch to PolarSSL?
-
> From: Carlo Wood
> Sent: Thursday, November 15, 2012 8:31 AM
> To: openssl-users@openssl.org
> Subject: Re: I can't believe how much this sucks
>
> On Tue, 13 Nov 2012 14:11:17 -0700
> t...@terralogic.net wrote:
> > This is just a NORMAL way for a programmer to
ssage- From: Carlo Wood
> Sent: Thursday, November 15, 2012 8:31 AM
> To: openssl-users@openssl.org
> Subject: Re: I can't believe how much this sucks
>
>
> On Tue, 13 Nov 2012 14:11:17 -0700
> t...@terralogic.net wrote:
>>
>> This is just a NORMAL way fo
...@openssl.org]
On Behalf Of Sanford Staab(Gmail)
Sent: Thursday, November 15, 2012 5:27 AM
To: openssl-users@openssl.org
Subject: Re: I can't believe how much this sucks
It’s interesting that this article shows that LACK OF GOOD DOCUMENTATION and
POOR API DESIGN are at the heart of this pr
let
me or others know how we can update the docs somehow?
-Original Message-
From: Carlo Wood
Sent: Thursday, November 15, 2012 8:31 AM
To: openssl-users@openssl.org
Subject: Re: I can't believe how much this sucks
On Tue, 13 Nov 2012 14:11:17 -0700
t...@terralogic.net wrote:
Th
--
From: Marco Molteni (mmolteni)
Sent: Thursday, November 15, 2012 4:42 AM
To: openssl-users@openssl.org
Subject: Re: I can't believe how much this sucks
Another amen.
I am a professional programmer. I am grateful for OpenSSL. At the same
time, each time I have to use it directly (as opp
On Tue, 13 Nov 2012 14:11:17 -0700
t...@terralogic.net wrote:
> This is just a NORMAL way for a programmer to work IMHO. I HATE
> comming into undocumented code years after its been written and IMHO
> its a big booby trap because its very easy to miss something and that
> creates hard to find bugs
Another amen.
I am a professional programmer. I am grateful for OpenSSL. At the same
time, each time I have to use it directly (as opposed to use a few of the
good C++ wrappers) I know I will be going down to hell and fight for my
life, and when I will come back, my hairs will be grayer :-)
Lack
On 11/13/2012 11:24 PM, Pierre DELAAGE wrote:
If we would have to have deep understanding of the various codes we are
using everyday (I am myself a programmer, and openssl WCE contributor),
we would not have enough time to work, to produce anything.
Anyway understanding "what the code is SUPPOSE
> the 'many eyes make all bugs shallow' views
You don't believe that, do you?
The number of counter-examples of long-standing bugs in widely available
and active open-source systems should be large enough to call it now.
Especially in subtle, complex systems where there is no documentation of
> For things that the peer support forum and the existing documentation
don't cover, you have the source code, which is definitive.
The source code can tell you what it DOES do - but the cost of
understanding that can be very high in some cases, and the problem
domain of OpenSSL almost guarant
If we would have to have deep understanding of the various codes we are
using everyday (I am myself a programmer, and openssl WCE contributor),
we would not have enough time to work, to produce anything.
Anyway understanding "what the code is SUPPOSED to do" is one thing, and
HOW it is doing it
On Tue, Nov 13, 2012 at 4:38 PM, alan buxey wrote:
> Hi,
>
> >Nonsense. No-one knows better how the code ought to be working than
> the
> >folk who developed it. I begin with the assumption that all my
> coders are
>
>
> i'd cite the cathedral and the bazaar ...or the 'many eyes make al
Hi,
>Nonsense. No-one knows better how the code ought to be working than the
>folk who developed it. I begin with the assumption that all my coders are
i'd cite the cathedral and the bazaar ...or the 'many eyes make all bugs
shallow'
views - if you are given the API and the documents,
EXACTLY!
Charles
From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org]
On Behalf Of Sanford Staab
Sent: Tuesday, November 13, 2012 12:53 PM
To: openssl-users@openssl.org
Subject: Re: I can't believe how much this sucks
Couldn’t agree more Ted. I think the b
On Tue, Nov 13, 2012 at 3:18 PM, alan buxey wrote:
> Hi,
>
> >I am not criticising the documentation for openssl, and will not; but
> I
> >would encourage those who are responsible for maintaining and
> improving
> >openssl to not neglect the documentation. It would be a mistake to
>
don’t even seem to
want someone who does to help.
From: "Magosányi, Árpád"
Sent: Tuesday, November 13, 2012 1:51 PM
To: openssl-users@openssl.org
Subject: Re: I can't believe how much this sucks
On 11/13/2012 07:34 PM, Sanford Staab wrote:
Do you guys just want to continue to a
: openssl-users@openssl.org
Subject: Re: I can't believe how much this sucks
On Tue, Nov 13, 2012 at 2:02 PM, Lee Fisher wrote:
For things that the peer support forum and the existing documentation don't
cover, you have the source code, which is definitive.
Additionally,
On Tue, Nov 13, 2012 at 07:51:24PM +0100, "Magosányi, Árpád" wrote:
> On 11/13/2012 07:34 PM, Sanford Staab wrote:
> >
> > Do you guys just want to continue to answer questions on this alias
> > and not FIX the docs somewhat over time? I could go into a litany of
> > how much information is just m
I beg to differ and this is one reason I am not very active.
Several years ago I contributed a function to determine endianess. I had done
it years and years before so it was quite simple for me. I took the time to
put documentation in the function. Also I am a professional consulting
progr
Hi,
>I am not criticising the documentation for openssl, and will not; but I
>would encourage those who are responsible for maintaining and improving
>openssl to not neglect the documentation. It would be a mistake to leave
it is an Open Source project - thus there is also an onus on
On Tue, Nov 13, 2012 at 1:51 PM, "Magosányi, Árpád" wrote:
> On 11/13/2012 07:34 PM, Sanford Staab wrote:
>
> Do you guys just want to continue to answer questions on this alias and not
> FIX the docs somewhat over time? I could go into a litany of how much
> information is just missing from the
On Tue, Nov 13, 2012 at 1:34 PM, Sanford Staab wrote:
> I have been struggling with openssl for a few months now writing batch
> scripts on windows trying to make a .net web client with a client
> certificate work with 2-way ssl against an apache web server.
>
> Do you guys just want to continue t
On Tue, Nov 13, 2012 at 2:02 PM, Lee Fisher wrote:
> For things that the peer support forum and the existing documentation
> don't cover, you have the source code, which is definitive.
>
> Additionally, there are professional OpenSSL consultants you can use for
> help.
>
> It would be more produc
> It's a GREAT product and I love it and am grateful but why after
> years and years do the man pages still say "under construction"?
Because it is an open source project and the things that get done
are the things people volunteer to do. Most programmers would
much rather create cool things tha
Answers inline.
--
Erwann ABALEA
-
paléocapridé: genre de vieille bique, cf paléotalpidé (vieille taupe) ou
paléogadidé (vieille morue)
Le 13/11/2012 19:34, Sanford Staab a écrit :
I have been struggling with openssl for a few months now writing batch
scripts on windows trying to make a .n
On Tue, Nov 13, 2012 at 6:34 PM, Sanford Staab wrote:
> I have been struggling with openssl for a few months now writing batch
> scripts on windows trying to make a .net web client with a client
> certificate work with 2-way ssl against an apache web server.
>
> Do you guys just want to continue t
”?
Charles
From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org]
On Behalf Of Sanford Staab
Sent: Tuesday, November 13, 2012 10:35 AM
To: openssl-users@openssl.org
Subject: I can't believe how much this sucks
I have been struggling with openssl for a few month
For things that the peer support forum and the existing documentation
don't cover, you have the source code, which is definitive.
Additionally, there are professional OpenSSL consultants you can use for
help.
It would be more productive to submit bugs and patches, instead of a
litany :-)
_
On 11/13/2012 07:34 PM, Sanford Staab wrote:
>
> Do you guys just want to continue to answer questions on this alias
> and not FIX the docs somewhat over time? I could go into a litany of
> how much information is just missing from the docs with INCOMPLETE
> everywhere.
You might have overlooked
I have been struggling with openssl for a few months now writing batch scripts
on windows trying to make a .net web client with a client certificate work with
2-way ssl against an apache web server.
Do you guys just want to continue to answer questions on this alias and not FIX
the docs somewha
38 matches
Mail list logo