Re: Question!

Sean,   Your message has been very helpful.   Thank you,   Nicolas Roumiantzeff -Message d'origine-De : Sean Walton <[EMAIL PROTECTED]>À : [EMAIL PROTECTED] <[EMAIL PROTECTED]>Date : jeudi 11 janvier 2001 03:29Objet : Re: Question!Ask

Re: Question!

Why would you want your own cipher? What is wrong with existing ciphers? They have been carefully designed and reviewed (as far as we can trust the crypto community) where your own cipher might contain security holes. Don't you think? Nicolas Roumiantzeff -Message d'origine-

Re: timeout - non blocking mode

Title: timeout - non blocking mode You could close the underlying socket from an other thread and that would make the SSL_connect return with an error.   Nicolas Roumiantzeff.  -Message d'origine-De : Alex Cosic <[EMAIL PROTECTED]>À : '[EMAIL PROTECTE

Re: RSA_generate_key() without /dev/urandom

Bodo Moeler wrote about the truerand library (at ftp://ftp.research.att.com/dist/mab/librand.shar): >It's not that portable (for getting CFS to work, I had to replace the >roulette() function by an implementation that simply reads from >/dev/urandom -- for reasons I did not investige further, SIG

Re: RSA_generate_key() without /dev/urandom

the trick. Nicolas Roumiantzeff. /* "spinners" */ #include #include typedef struct { volatile long lTimes; volatile unsigned long ulCounter; CRITICAL_SECTION sCriticalSection; } WHEEL; static DWORD WINAPI SpinnerThread (LPVOID pWheel) { WHEEL* spWheel = (WHEEL*) pWheel; while (sp

Re: random number generator:SSLEAY_RAND_BYTES:prng notseeded:md_rand.c:476

What about librand (a random number package based on event interval variations, from Matt Blaze, Jack Lacy, and Don Mitchell) at: http://www.cs.berkeley.edu/~daw/rnd/ Or variants using multi-threadings. Nicolas Roumiantzeff. -Message d'origine- De : Juergen Moellenhoff &l

Re: Can't have SSL with multiple domain names on a single server...

OK so you could then use different port numbers each corresponding to one specific certificate. Nicolas Roumiantzeff. -Message d'origine- De : Richard Levitte - VMS Whacker <[EMAIL PROTECTED]> À : [EMAIL PROTECTED] <[EMAIL PROTECTED]> Cc : [EMAIL PROTECTED] <[EM

Re: Can't have SSL with multiple domain names on a single server...

CNAME's multi-homed servers. Nicolas Roumiantzeff. -Message d'origine- De : Richard Levitte - VMS Whacker <[EMAIL PROTECTED]> À : [EMAIL PROTECTED] <[EMAIL PROTECTED]>; [EMAIL PROTECTED] <[EMAIL PROTECTED]> Date : lundi 21 février 2000 10:28 Objet : Re: Can

Re: Can't have SSL with multiple domain names on a single server...

ame or with the IP address directly. Nicolas Roumiantzeff. __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List M

Re: Can't have SSL with multiple domain names on a single server...

There is also a problem when the connection passes throuh proxies and/od socks servers (except for the one declared in the browser). Is the IP address checking realy important? Nicolas Roumiantzeff. -Message d'origine- De : Ben Laurie <[EMAIL PROTECTED]> À : [EMAIL PROTECT

Re: Random number generation

>Without user input you have a problem if your OS doesn't provide a >random device. There is librand, a random number package based on event interval variations, from Matt Blaze, Jack Lacy, and Don Mitchell available at: ftp://ftp.research.att.com/dist/mab/librand.shar Nicolas R

Re: How to timeout a SSL_connect?

You could start a secondary thread that sleeps for the desired number of seconds then close the socket (if the primary thread has still not succeeded in connecting). This should exit the primary thread socket call with an error. Nicolas Roumiantzeff. >Sean Walker wrote: > >> >Th

Re: d2i_X509

I intend to switch to OpenSSL soon, but it seams that I will face some compatibility issues. Does anybody have any experience making "The Big Jump"? Nicolas Roumiantzeff. __ OpenSSL Project

Re: d2i_X509

EVP_PKEY_free(key);" would crash. Am I missing something here? Nicolas Roumiantzeff. __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Auto