RE: cvs commit: openssl/apps s_server.c

2001-03-30 Thread David Schwartz
> Richard add a -WWW option that makes available the files under the > current directory. It's just a test tool, but still it should not > allow anyone who can connect to the s_server port to obtain the > contents of other local files; so we have to reject file names > referencing directory ".."

Re: cvs commit: openssl/apps s_server.c

2001-03-30 Thread Bodo Moeller
Ben Laurie <[EMAIL PROTECTED]>: > Attempting to make URL to file translations safe is a tricky task. I > suggest we don't even bother with s_server - why would we want to? It is > a test/demo tool? Richard add a -WWW option that makes available the files under the current directory. It's just a

RE: [ANNOUNCEMENT] OpenSSL 0.9.6a Beta 3 released

2001-03-30 Thread lgazis
Tests of OpenSSL 0.9.6a Beta 3, engine version in all cases, in all cases did make, ran openssl speed test to make sure engine loaded properly, and ran make test: HP-UX 11.0 32-bit (hpux-parisc-gcc): Passed if libswift.sl was copied to apps directory. AIX 4.3 (aix43-gcc): Passed if libswift.a was

Re: Bug Report: Sparc Linux Redhat-6.2

2001-03-30 Thread Bob Tanner
Quoting Andy Polyakov ([EMAIL PROTECTED]): > > %ifarch sparc sparc64 > > ./Configure %{CONFIG_FLAGS} --openssldir=%{openssldir} linux-sparcv9 shared > > %endif > > Should at least look like following: > > %ifarch sparc > ./Configure %{CONFIG_FLAGS} --openssldir=%{openssldir} linux-sparcv7 shared

Re: cvs commit: openssl/apps s_server.c

2001-03-30 Thread Ben Laurie
Bodo Moeller wrote: > > On Fri, Mar 30, 2001 at 04:55:52PM +0200, [EMAIL PROTECTED] wrote: > > > Modified:apps s_server.c > > Log: > > this time *really* fix the /../ check ... > > Well, I guess this one was a little late ... > > The original implementation had the problem that i

Re: OpenSSL: infinite length SEQUENCE bug fix.

2001-03-30 Thread Dr S N Henson
Shigeyuki Fukushima wrote: > > Hello. > > I'm a OpenSSL user. > I found openssl's bug. > I send a bug-fix patch. > It is a fix for an infinte length SEQUENCE. > > infinite length SEQUENCE: 0x30 0x80 ...Contents... 0x00 0x00 > > And also, I send a pkcs#7 data: cert.p7. > Using openssl-0.9.6

Question about PKCS#8 format with DSA parameters

2001-03-30 Thread Eric Bolinger
I'm trying to use a certificate generated by a Java app (using a certain Java Crypto library). It knows how to generate PKCS#8 format with DSA parameters and identifies the algorithm as OID=1.3.14.3.2.12. This is equivalent to "dsaEncryption-old" in crypto/objects/objects.h. This Java library *

Compiling SSL MZ telnet on HP-UX 11.00

2001-03-30 Thread Michael Sramek
Has anyone successfuly compiled any version of SSL-MZ-telnet on hp-ux 11.00? I`ve tried to compile versions 0.11.1 and 0.11.2, and always got this error(s): cc -c -g -I../lib -I../include -I/usr/local/ssl/include -DHAVE_CONFIG_H -DDIAGNOSTICS -DOLD_ENVIRON -DENV_HACK -DAUTHENTICATION sys_term.

Re: Integrating Other Crypto into OpenSSL?

2001-03-30 Thread Ben Laurie
"David E. Weekly" wrote: > > Please excuse this somewhat naive question. > > Would it make sense to integrate additional cryptography into OpenSSL's > libcrypto? Would it be useful to have AES and Twofish, a TIGER hash, etc? More crypto is always welcome. We do already have AES, however. > Is

Re: Bug Report: Sparc Linux Redhat-6.2

2001-03-30 Thread Andy Polyakov
> > But this fails to generate the shared library. > > No, it doesn't. I mean "that's correct, it doesn't generate shared libraries." A:-) __ OpenSSL Project http://www.openssl.org Development Mai

Re: Bug Report: Sparc Linux Redhat-6.2

2001-03-30 Thread Andy Polyakov
> %ifarch sparc sparc64 > ./Configure %{CONFIG_FLAGS} --openssldir=%{openssldir} linux-sparcv9 shared > %endif Should at least look like following: %ifarch sparc ./Configure %{CONFIG_FLAGS} --openssldir=%{openssldir} linux-sparcv7 shared %endif %ifarch sparc64 ./Configure %{CONFIG_FLAGS} --opens