Re: [AOLSERVER] Triple DES Encryption
No. nsopenssl only encrypts SSL traffic. It doesn't have the smarts yet to take a chunk of data and encrypt it and pass it back to you, though it's possible to add that functionality to the module. Right now, you could run a shell (ugh, I know) script that takes your data, runs it through openssl and returns the result to you. Unless you want to hack on the nsopenssl module and add the capability you need (which I'll gladly peer review and incorporate into the released version). Otherwise it'll have to wait until I've completed this iteration of the module. /s. > From what I understand I would be needing to encrypt the data (text > string) with 3DES and then I would put this encrypted string at the end of > a HTTPS URL. > The receiving end would then decrypt and use the text string. > Would nsopenssl do this ? > > divney > > At 01:33 PM 7/23/01 -0400, Scott Goodwin wrote: > >If you're talking about 3DES over an SSL connection, nsopenssl can do that. > > > >If you're talking about 3DES to encrypt files on disk, in memory etc., > >nsopenssl doesn't do that...but it's an interesting idea which I've just > >added to my todo list. It would be useful to use be able to do: > > > > set rc [ns_openssl_crypt -cipher 3des -file /blah -password aoeu2345] > > > > > >/s. > > > > > > > > > > > Hello, > > > > > > Not being that familiar with encryption, do there exist AOLServer TCL > > > commands to handle Triple DES encryption ? > > > > > > I am thinking maybe via OpenSSL or ns_openssl, but I am not sure. > > > > > > I think I may have found a way to do this in Perl, but would rather do so > > > in TCL. > > > > > > Thanks !! > > > > > > divney > > > > > > > > >
Re: [AOLSERVER] Triple DES Encryption
From what I understand I would be needing to encrypt the data (text string) with 3DES and then I would put this encrypted string at the end of a HTTPS URL. The receiving end would then decrypt and use the text string. Would nsopenssl do this ? divney At 01:33 PM 7/23/01 -0400, Scott Goodwin wrote: >If you're talking about 3DES over an SSL connection, nsopenssl can do that. > >If you're talking about 3DES to encrypt files on disk, in memory etc., >nsopenssl doesn't do that...but it's an interesting idea which I've just >added to my todo list. It would be useful to use be able to do: > > set rc [ns_openssl_crypt -cipher 3des -file /blah -password aoeu2345] > > >/s. > > > > > > Hello, > > > > Not being that familiar with encryption, do there exist AOLServer TCL > > commands to handle Triple DES encryption ? > > > > I am thinking maybe via OpenSSL or ns_openssl, but I am not sure. > > > > I think I may have found a way to do this in Perl, but would rather do so > > in TCL. > > > > Thanks !! > > > > divney > > > >
Re: [AOLSERVER] SSL built fail BSAFE variable not dfind
that'd be neat. previously i've gotten ssl pages within aolserver by
shelling out to curl.
jeff
> -Original Message-
> From: Scott Goodwin [mailto:[EMAIL PROTECTED]]
> Sent: Monday, July 23, 2001 10:27 AM
> To: [EMAIL PROTECTED]
> Subject: Re: [AOLSERVER] SSL built fail BSAFE variable not dfind
>
>
> > Let me understand this correctly: In your next version,
> I'll be able to
> > ns_httpget (or some equivalent) an SSL site? I'm looking for this
> > functionality *right now*. Is something like this availible now in
> > AOLServer/TCL, or is yours the first?
>
> Yes, Sort of, Maybe.
>
> I'm implementing all of the equivalnent ns_sock* Tcl commands
> in nsopenssl,
> include a C API. As of this moment I can make outgoing SSL
> connections and
> fetch pages. I've implemented ns_httpsget and ns_httpsopen by
> copying and
> modifying http.tcl to https.tcl. I've implemented Ns_FetchURL and
> ns_geturl. ns_socklisten, is (mostly) working right now.
>
> As far as I know this is the first real capability to do SSL
> from within
> AOLserver; other methods rely on CGI but will work to fetch pages.
>
>
> Here's an example Tcl script that fetches a page:
>
> set fds [ns_openssl_sockopen 192.168.0.2 8001]
> set rid [lindex $fds 0]
> set wid [lindex $fds 1]
> puts $wid "GET / HTTP/1.0\r\n\r\n"
> flush $wid
> while {[set line [string trim [gets $rid]]] != ""} {
> lappend headers $line
> }
> set page [read $rid]
> close $rid
> close $wid
> ns_log notice "PAGE=$page"
>
>
> Here's another:
>
> set hlist [ns_httpsopen GET "https://192.168.0.2:8001";]
> set rid [lindex $hlist 0]
> set wid [lindex $hlist 1]
> set setid [lindex $hlist 2]
> ns_log notice "RID=$rid WID=$wid SETID=$setid"
> set page [read $rid]
> close $rid
> close $wid
> ns_log notice "PAGE=$page"
>
> And another:
>
> set page [ns_httpsget "https://192.168.0.2:8001";]
> ns_log notice "PAGE=$page"
>
>
> The software is in beta right now. Expected release is as
> soon after next
> weekend as possible.
>
>
> /s.
>
Re: [AOLSERVER] Triple DES Encryption
If you're talking about 3DES over an SSL connection, nsopenssl can do that. If you're talking about 3DES to encrypt files on disk, in memory etc., nsopenssl doesn't do that...but it's an interesting idea which I've just added to my todo list. It would be useful to use be able to do: set rc [ns_openssl_crypt -cipher 3des -file /blah -password aoeu2345] /s. > Hello, > > Not being that familiar with encryption, do there exist AOLServer TCL > commands to handle Triple DES encryption ? > > I am thinking maybe via OpenSSL or ns_openssl, but I am not sure. > > I think I may have found a way to do this in Perl, but would rather do so > in TCL. > > Thanks !! > > divney > >
Re: [AOLSERVER] SSL built fail BSAFE variable not dfind
> Let me understand this correctly: In your next version, I'll be able to
> ns_httpget (or some equivalent) an SSL site? I'm looking for this
> functionality *right now*. Is something like this availible now in
> AOLServer/TCL, or is yours the first?
Yes, Sort of, Maybe.
I'm implementing all of the equivalnent ns_sock* Tcl commands in nsopenssl,
include a C API. As of this moment I can make outgoing SSL connections and
fetch pages. I've implemented ns_httpsget and ns_httpsopen by copying and
modifying http.tcl to https.tcl. I've implemented Ns_FetchURL and
ns_geturl. ns_socklisten, is (mostly) working right now.
As far as I know this is the first real capability to do SSL from within
AOLserver; other methods rely on CGI but will work to fetch pages.
Here's an example Tcl script that fetches a page:
set fds [ns_openssl_sockopen 192.168.0.2 8001]
set rid [lindex $fds 0]
set wid [lindex $fds 1]
puts $wid "GET / HTTP/1.0\r\n\r\n"
flush $wid
while {[set line [string trim [gets $rid]]] != ""} {
lappend headers $line
}
set page [read $rid]
close $rid
close $wid
ns_log notice "PAGE=$page"
Here's another:
set hlist [ns_httpsopen GET "https://192.168.0.2:8001";]
set rid [lindex $hlist 0]
set wid [lindex $hlist 1]
set setid [lindex $hlist 2]
ns_log notice "RID=$rid WID=$wid SETID=$setid"
set page [read $rid]
close $rid
close $wid
ns_log notice "PAGE=$page"
And another:
set page [ns_httpsget "https://192.168.0.2:8001";]
ns_log notice "PAGE=$page"
The software is in beta right now. Expected release is as soon after next
weekend as possible.
/s.
[AOLSERVER] Triple DES Encryption
Hello, Not being that familiar with encryption, do there exist AOLServer TCL commands to handle Triple DES encryption ? I am thinking maybe via OpenSSL or ns_openssl, but I am not sure. I think I may have found a way to do this in Perl, but would rather do so in TCL. Thanks !! divney
Re: [AOLSERVER] SSL built fail BSAFE variable not dfind
Let me understand this correctly: In your next version, I'll be able to ns_httpget (or some equivalent) an SSL site? I'm looking for this functionality *right now*. Is something like this availible now in AOLServer/TCL, or is yours the first? - In reply to "Re: [AOLSERVER] SSL built fail BSAFE variable not dfind" from Scott S. Goodwin <[EMAIL PROTECTED]> - > Any reason why you're using nsssl? > > Compile AOLserver without SSL, then grab the nsopenssl module from > http://scottg.net and compile/install that. It does SSLv3 and TLSv1; > nsssl only does SSLv2. Also, nsopenssl is able to read client certs and > has a Tcl interface to work with them. > > In addition, my development copy of nsopenssl can do outgoing SSL > connections via the Tcl interface. I'll be releasing this version within > two weeks. > > > /s. > > -Original Message- > From: AOLserver Discussion [mailto:[EMAIL PROTECTED]] On Behalf > Of aT > Sent: Sunday, July 15, 2001 9:08 AM > To: [EMAIL PROTECTED] > Subject: [AOLSERVER] SSL built fail BSAFE variable not dfind > > > I am trying to do > make all > under root/aolserver/nssock > but its giving me this error > > ** > ** BSAFE variable not set. > ** nsssl will not be built. > ** > > How can i compile both nssl and ssle modules what do i need to install > or define BSAFE. > > I am using RH 6.2 and aolserver 3.3. > > > Thanks -- Lee Teague Placemark Investments 972.404.8100x31 | [EMAIL PROTECTED]
