RE: [OT] Rabin-Miller test for primes
Hi, Sisyphus [SMTP:[EMAIL PROTECTED]] asked: I have 2 almost identical accounts of the Rabin-Miller test. One is in Schneier's 'Applied Cryptography' and the other is at http://mason.gmu.edu/~kgaj/ECE590/spec/dong.html ( from a Google search). I can follow the procedure quite well, except for the role of the variable 'j', which has no bearing at all on the procedure (as it is described). Could someone tell me what I'm supposed to do with 'j' ? You have read up to step 5? :-) HTH, Thomas __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
RE: Wasn't someone joking about the virus being posted by an autoresponder
Hi, Steven Reddie [SMTP:[EMAIL PROTECTED]] wrote: Subject: Wasn't someone joking about the virus being posted by an autoresponder At least I thought it was a joke. No Joke. The virus scanner run by btitele.com bounces the virus back on the list again and again. Sadly it doesn't tell us who the subscriber from that site is... Thomas __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
RE: ROOKIE Question
Hi, [EMAIL PROTECTED] [SMTP:[EMAIL PROTECTED]] suggested: [win32 ssh clients] There's a whole list of them. I haven't tried putty yet. I use TTSSH at home (not that my LAN at home is likely to be hacked, I just prefer it to Windows' telnet!) and F-Secure SSH at work. advert The latter costs money, but I think it's money well spent /advert Another commercial alternative would be SecureCRT available from http://www.vandyke.com/ (shareware, 30 days free trial). We used to use F-Secure SSH at work, but switched over to SecureCRT when it became for the "free" world because its terminal emulation was (at least back then) much better than F-Secure SSH's. SecureFX is their SSH enabled FTP client. HTH, Thomas "not affiliated with VanDyke, but a very satisfied customer" __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
RE: Web Page containing images runs slow over ssl connections
Hi, Walgamotte, David [SMTP:[EMAIL PROTECTED]] asked: When ever I install the verisign certificate on a website it slows down dramatically. This site contains graphical menus in the SSL sections. [...] Any work around or fix for this Which server software are you running and how "fast" is the server machine? SSL encoding does cost you some extra CPU cycles, so a CPU upgrade may be in order. Also, the fact that each image is requested over a new TCP connection may contribute to the slowdown. If you have Apache, you could check wether you have KeepAlive set to on. HTH, Thomas __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
RE: certificate's relation to IP of server
David Mundy [SMTP:[EMAIL PROTECTED]] asked: I have to make some modifications to an existing Linux Apache web server that uses SSL but I'm a newbie to SSL. We are changing ISPs so I need to give the server a new IP address. Everything else such as the Host and Domain Name will be staying the same. No problem. The certificate is associated with the DN of the server, i.e. its fully qualified DNS name. HTH, Thomas __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
RE: Dumb question- Sorry
Hi, Michael Conley [SMTP:[EMAIL PROTECTED]] asked: [...] My question is how do I control which files can be accessed via http and which can only be accessed by https? [...] That's rather an Apache or mod_ssl than an OpenSSL question. Basically, you might want to consider to create a virtual host (same ip, different port) for SSL only and give that a different document root directory. You'd then disable SSL in the main server context (SSLEngine off) and reenable it in the virtual host context. HTH, Thomas __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
RE: CommonName in Thawte Server Certificates
Hi, Marko Asplund [SMTP:[EMAIL PROTECTED]] asked: [...] i'm a bit confused by this message. the common name field in the certificate signing request is CN=puppa.huuhaa.org. how can it be that browsers would give name mismatch warnings if the URL used is not https://puppa.huuhaa.org/? don't browsers match server name against the certificate's CN field's value and not the URL through which the server is accessed? You can have multiple DNS names point to the same server address, i.e. www.domain.net and www.other-domain.net resolve to the same address. Now if your server cert at that address is made out for www.domain.net but you access the site via www.other-domain.net, the domain names don't match. Thawte's issue is probably with the current trend to have both domain.name and www.domain.name DNS entries for the same site. MfG, -- Thomas Bätzler, System Administrator, Network Operations EMEA Harbinger, e-Business Connectivity Group, a part of Peregrine Steinhäuserstraße 22 phone: +49-721-98143-110 D-76135 Karlsruhe / Germanyfax: +49-721-98143-196 __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
RE: Out of office autoreply
[EMAIL PROTECTED] [SMTP:[EMAIL PROTECTED]] wrote: Hi, I'm currently not in the office until next Monday August 21, 2000. For any urgent message please leave message in my office at +62 21 6269018, and I will get back to you soon. Thanks. Great job, Benny! You have set up your Outlook account to send an Out of Office mail to every incoming post, including your own out-of-office posts. Could the list maintainer please unsubscribe this genius before he floods all of our boxes? MfG, -- Thomas Bätzler, System Administrator, Network Operations EMEA Harbinger, e-Business Connectivity Group, a part of Peregrine Steinhäuserstraße 22 phone: +49-721-98143-110 D-76135 Karlsruhe / Germanyfax: +49-721-98143-196 __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
RE: Out of office autoreply
Douglas Wikström [SMTP:[EMAIL PROTECTED]] wrote: This is clearly not good for Bennys karma... (irritating a lt of people :-) Well, let's hope that he soon runs out of mail quota - or that a list admin kick himn off. Meanwhile, each extra mail to the list will create more auto replies :-) MfG, -- Thomas Bätzler, System Administrator, Network Operations EMEA Harbinger, e-Business Connectivity Group, a part of Peregrine Steinhäuserstraße 22 phone: +49-721-98143-110 D-76135 Karlsruhe / Germanyfax: +49-721-98143-196 __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
RE: PLEASE STOP Re: Out of office autoreply
Hi, [EMAIL PROTECTED] [SMTP:[EMAIL PROTECTED]] asked: Could someone please stop this reply. 150 of them are enough. Oh, you only got 150? Then you've certainly missed quite a few :-) If you are annoyed, why don't you try and email [EMAIL PROTECTED] and ask him to turn off multiple out-of-office replies for this user? MfG, -- Thomas Bätzler, System Administrator, Network Operations EMEA Harbinger, e-Business Connectivity Group, a part of Peregrine Steinhäuserstraße 22 phone: +49-721-98143-110 D-76135 Karlsruhe / Germanyfax: +49-721-98143-196 __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]