Thank you!
José Carlos de Oliveira (Oliveira)
Pesquisador / Desenvolvedor - Grupo ICTS
Brasilia - DF - Asa Norte
SCN Q05 - Brasilia Shopping - Torre Norte Sala 917
Fone:+5561-3246.7089
Cel:+5561-99311.9226
Site: www.grupoicts.com.br
-Mensagem original-
De: Matt Caswell via RT
reference to EVP_CIPHER_CTX_init
undefined reference to EVP_CIPHER_CTX_cleanup
The OS I´m using is a Linux SLESS11 desktop 32 bits: kernel
3.0.13-0.27-default
Regards,
José Carlos de Oliveira (Oliveira)
Pesquisador / Desenvolvedor - Grupo ICTS
Brasilia - DF - Asa Norte
SCN Q05 - Brasilia
/2015 04:48, dE wrote:
Hi!
I'm having a difficult time getting X11 forwarding to work.
Since I've read the docs completely about this, this must be an SSH
bug which is likely because I'm using Gentoo as the SSH server.
When trying to forward X11 connections, I get
X11 conn
Hi!
I'm having a difficult time getting X11 forwarding to work.
Since I've read the docs completely about this, this must be an SSH bug
which is likely because I'm using Gentoo as the SSH server.
When trying to forward X11 connections, I get
X11 connection rejected because of wrong authentic
Hi!
I was wondering if there are ways by which you can get a PEM encoded
certificate stored into a char* from a X509 structure.
I got a lot of ways to write it to FILE, but nothing appears to return a
char*.
Thanks for any pointers.
___
openssl-de
On 03/06/15 20:04, Salz, Rich wrote:
So if you don't get back an error, looking at the error stack isn't guaranteed
to be useful. Just like errno and syscalls.
You have to explicit clear the error stack if you want that behavior.
--
Senior Architect, Akamai Technologies
IM: rs...@jabber.me Tw
On 03/05/15 19:17, Salz, Rich wrote:
int result = SSL_connect(sslconnection);
printf ("error no. is %ld\n", ERR_peek_last_error());
This code does work and prints 'error no. is 336130315', but when it connects
over localhost, the error is always 0.
What's result?
___
I'm trying to set the fragment size for the TLS connection under the
hopes that it improves compression.
Is there anyway I can do so?
___
openssl-dev mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
First I encountered problems here --
https://mta.openssl.org/pipermail/openssl-dev/2015-March/000806.html
Guessing if this's a openssl command related problem, but now I've
problems in code.
SSL_library_init();
SSL_load_error_strings();
const SSL_METHOD* meth;
meth = TLSv1_2_m
On 03/01/15 20:31, Kurt Roeckx wrote:
On Sun, Mar 01, 2015 at 08:12:25PM +0530, dE wrote:
On 03/01/15 20:07, Kurt Roeckx wrote:
On Sun, Mar 01, 2015 at 05:41:03PM +0530, dE wrote:
Hi!
gethostbyname failure
This probably means that you don't have localhost in /etc/hosts
127.
On 03/01/15 20:07, Kurt Roeckx wrote:
On Sun, Mar 01, 2015 at 05:41:03PM +0530, dE wrote:
Hi!
gethostbyname failure
This probably means that you don't have localhost in /etc/hosts
Kurt
___
openssl-dev mailing list
To unsubscribe:
Hi!
There appears to be a bug in the openssl program which has persisted for
years (as it appears from the Google search results).
I'm using s_server as follows
openssl s_server -accept -cert issuer.pem -key issuer.key
If the incoming connection is from localhost --
Using default temp
On 01/31/15 14:06, Aaron Jones wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 31/01/15 07:37, dE wrote:
Hi!
I was tying out the put command with version 6.7_p1 of OpenSSH.
If I use recursive copying, sftp expects the last directory in the
exists in the destination (on the server
Hi!
I was tying out the put command with version 6.7_p1 of OpenSSH.
If I use recursive copying, sftp expects the last directory in the
exists in the destination (on the server), otherwise “Couldn't
canonicalize: No such file or directory”.
I would've taken this to be the expected behavior,
b" if $zlib_opt == 1;
My possible fix is to move that line above line 394 so it looks like (maybe fix
indentation):
$ex_libs .= " $zlib_lib" if $zlib_opt == 1;
if ($shlib)
If you need more info please let me know.
Thanks,
SLDR
(Stephen L. De Rudder)
e-mail: rdl...@tditx.co
On 10/14/14 16:47, Hubert Kario wrote:
- Original Message -
From: "dE"
To: openssl-dev@openssl.org
Sent: Tuesday, 14 October, 2014 6:39:11 AM
Subject: Re: CIPHER STRINGS
On 10/13/14 17:09, Hubert Kario wrote:
- Original Message -
From: "dE"
To: openssl-
On 10/14/14 10:09, dE wrote:
On 10/13/14 17:09, Hubert Kario wrote:
- Original Message -
From: "dE"
To: openssl-dev@openssl.org
Sent: Monday, 13 October, 2014 5:38:28 AM
Subject: Re: CIPHER STRINGS
On 10/13/14 01:13, Viktor Dukhovni wrote:
On Sun, Oct 12, 2014 at 11:36:
On 10/13/14 17:09, Hubert Kario wrote:
- Original Message -
From: "dE"
To: openssl-dev@openssl.org
Sent: Monday, 13 October, 2014 5:38:28 AM
Subject: Re: CIPHER STRINGS
On 10/13/14 01:13, Viktor Dukhovni wrote:
On Sun, Oct 12, 2014 at 11:36:01PM +0530, dE wrote:
A command
On 10/13/14 01:13, Viktor Dukhovni wrote:
On Sun, Oct 12, 2014 at 11:36:01PM +0530, dE wrote:
A command line tool. Like openssl list-ciphersuits
My own preference in this case is complete and accurate documentation.
This'll also avoid updating the man page with long descriptive text.
On 10/12/14 22:15, Viktor Dukhovni wrote:
On Sun, Oct 12, 2014 at 08:33:58PM +0400, Fedor Indutny wrote:
Have you seen: `openssl ciphers -v` output?
This does not list the cipher string building blocks that represent
classes of cipher suites rather than an individual cipher suite.
Perhaps the
Hi.
I was reading the openssl ciphers command, where I would like to suggest
something for the CIPHER STRINGS.
Currently all possible cipher strings are listed in the man page with
each of their names having a description which may or may not specify if
it's an authentication, encryption, Kx
Thanks Matt.
Em 23/05/2014 19:36, "Matt Caswell via RT" escreveu:
> Hi Luiz
>
> Thanks for the patch. I've reviewed it and it looks good. With regards to
> your
> comments around X509_V_ERR_PERMITTED_VIOLATION vs
> X509_V_ERR_UNSUPPORTED_NAME_SYNTAX, I think you did it right.
>
> Therefore:
>
> h
< 16; i++) {
if ((name->data[i] ^ constraint->data[i]) & constraint->data[i+16])
goto loser;
}
return SECSuccess;
}
loser:
return SECFailure;
}
Source:
https://hg.mozilla.org/projects/nss/file/f732bcb62a2e/lib/certdb/genname.c
Regards,
---
Luiz Ang
Thanks Matt,
Sent to r...@openssl.org. However, I didn't see it in http://rt.openssl.org/.
Is it supposed to update realtime?
Regards,
---
Luiz Angelo Daros de Luca, Me.
luizl...@gmail.com
2014-05-03 17:15 GMT-03:00 Matt Caswell :
> On 3 May 2014 18:52, wrote:
good day openssl,
we at http://NetBSD.org/ do package your software in http://pkgsrc.org/
we noticed your Available Mirror ftp://ftp.openssl.org/source/ is not
working, just and only http://ftp.openssl.org/source/ works so we
did change to that without asking you as you can see in:
http://cvsweb.n
good day openssl,
we at http://NetBSD.org/ do package your software in http://pkgsrc.org/
we noticed your Available Mirror ftp://ftp.openssl.org/source/ is not
working, just and only http://ftp.openssl.org/source/ works so we
did change to that without asking you as you can see in:
http://cvsweb.n
have dropped e2ee).
has this possibility been considered? (i searched the logs of this list but
couldn't find any references)
many thanks,
Michiel de Jong
twitter.com/unhosted
Hi,
I have attached a patch against CVS HEAD which corrects the spelling of
"preceding" and "preceded" in the following files:
doc/ssleay.txt
doc/apps/x509v3_config.pod
doc/crypto/ASN1_generate_nconf.pod
Could these doc changes be committed upon review?
Thanks,
/* An
DDRINUSE10048L
EADDRINUSE is defined in errno.h as:
#define EADDRINUSE 100
I hope my description helps. If it doesn't make sense, I can give URLs to
Microsoft Documentation describing the Win32 API calls.
SLDR
(Stephen
Please consider making the following changes to e_os.h in OpenSSL V0.9.8o.
Thanks,
SLDR
(Stephen L. De Rudder)
Around line 62:
==
#include
#include
/* contains what we can justify to make visible
* to the outside; this file e_os.h is not part of the exported
* interface
Hi,
we need to check which encryption method is used in the ocsp response. The
output only says valid. How can we enable to print such status messages?
Any help would be appreciated!
Mit freundlichen Grüßen / Kind regards
Michel Pittelkow
IT-Dienstleistungen: beraten | planen | umsetzen | betre
Hi,
we need to check which encryption method is used in the ocsp response. The
output only says valid. How can we enable to print such status messages?
Any help would be appreciated!
Kind regards
Michel Pittelkow
at any performance decrease can even be measureed.
Erik
--
-----
Erik de Castro Lopo
-
The Earth is around 70% water. Fish rule the sea
there
> sometimes.
In the practice of engineering, we should try to avoid 'hoping'
about anything.
Erik
--
-----
Erik de Castro Lopo
-
"Every method you
ere.
Do you know its unpredicatable or are you only guessing?
Can a bad guy force it to be predicatable?
How much entropy is actually there? Has anyone actually measured it?
Erik
--
-----
Er
his it to either make it zero
or make it truely random.
Erik
--
-
Erik de Castro Lopo
-
"I would buy a Mac today if I was not working at Microsoft."
-- Senior Mi
ile it.
Erik
--
-----
Erik de Castro Lopo
-
The difference between genius and stupidity is that
genius h
from my Linux distribution.
Erik
--
-----
Erik de Castro Lopo
-
"We reject kings, presidents, and voting. We believe in rough
consensus and running code." -- Dave Clark (IETF 1992)
___
hat wouldn't be the
> > default, but wouldn't reduce the keyspace either.
>
> -DPURIFY *does* do what you want.
But thats a compile time option. I would prefer not to have to compile
my own version of OpenSSL just to be able to valgrind my program which
links against openssl.
Er
Hi,
I am a PHD student in UNICAMP, Brazil.
During my Msc, I developed an implementation of bilinear pairings over
elliptic curves using OpenSSL. In particular, an implementation of the Tate
pairing over curves defined on prime fields.
I am writing to ask you guys if the OpenSSL team has any i
't imply ret==0 ...
*/
--
+---+
Erik de Castro Lopo
+---+
"Men who use terrorism as a means to power, rule by terror
once they are in
e done it.
Very true.
Erik
--
+---+
Erik de Castro Lopo
+---+
"If only Muslims were clever politically, they could take over the United
States and replace its constitutional govt. with a caliphate."
-- Siraj Wa
't imply ret==0 ...
*/
--
+---+
Erik de Castro Lopo
+---+
"Men who use terrorism as a means to power, rule by terror
once they are in
e is an issue with the ASM versions of
AES_cbc_encrypt.
Cheers,
Erik
--
+---+
Erik de Castro Lopo
+---+
"Code is more often read than written and thus making it
readab
e is an issue with the ASM versions of
AES_cbc_encrypt.
Cheers,
Erik
--
+---+
Erik de Castro Lopo
+---+
"Code is more often read than written and thus making it
readab
n the source code I was hacking the code the -DPURIFY was
supposed to affect is already being disabled. Secondly, if that code
is really as un-necessary as it seems to be, why is it still in there?
Erik
--
+---
Erik de Castro Lopo wrote:
> So, my question is, is there any reason why Daniel Brahneborg's patch
> from 2003 wasn't applied? For reference, the patch (against 0.9.8c) is
> below.
Sorry, the patch was the wrong direction. The correct patch below.
Erik
diff -r -u openssl
get_rand_method();
- memset (buf, 0, num);
if (meth && meth->bytes)
return meth->bytes(buf,num);
return(-1);
--
+-------+
Erik de Castro Lopo
+--
I forgot to patch also the documentation and to tell that the patched
version is the 0.9.8d one (0.9.8.c is also compatible because ca.c is
not changed).
--
Diego
__
OpenSSL Project http://www.open
I forgot to patch also the documentation and to tell that the patched
version is the 0.9.8d one (0.9.8.c is also compatible because ca.c is
not changed).
--
Diego
suspend_reinstate_withdocs.patch
Description: Binary data
(Sorry for the other email, I've found in the README file the
procedure to make contributions... as usual RTFM ;-) )
I've made an improvement on the CA application command line section
of OpenSSL and I'll be glad to share it with the community. The change
is very simple: I've added two new comman
(Sorry for the other email, I've found in the README file the
procedure to make contributions... as usual RTFM ;-) )
I've made an improvement on the CA application command line section
of OpenSSL and I'll be glad to share it with the community. The change
is very simple: I've added two new comman
Hi to all.
I've made an improvement on the CA application command line section
of OpenSSL and I'll be glad to share it with the community. The change
is very simple: I've added two new commands named "suspend" and
"reinstate". With suspend you can suspend a certificate, i.e. revoke
it with the ce
On 9/19/06, Dr. Stephen Henson <[EMAIL PROTECTED]> wrote:
It will be a few days before I can check properly (on dead slow dialup at
present) but your gmail and openssl-dev:[EMAIL PROTECTED] are in the
openssl-dev subscription list.
Thanks Stephen. I can wait until you have time to look at it.
On 9/18/06, Erik de Castro Lopo <[EMAIL PROTECTED]> wrote:
Hi all,
Sorry for being such a PITA about this. Testing from a newly set up
Gmail account.
Over night there have been a number of emails to ths list as I can see here:
http://marc.theaimsgroup.com/?l=openssl-dev&r=1&am
Hi all,
Sorry for being such a PITA about this. Testing from a newly set up
Gmail account.
Erik
__
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev
You need to send an email
with
which [EMAIL PROTECTED]
to majordomo at openssl domain name.
Erik
--
+-------+
Erik de Castro Lopo
+---+
"I'm not even an atheist so much a
again and received the following:
>>>> auth cee6ff89 subscribe openssl-dev [EMAIL PROTECTED]
Address already subscribed to openssl-dev
so it seems that my work email address is in some weird quantum state
between subscribed and not-subscribed :-).
Cheers,
Erik
--
+--
,
Erik
--
+---+
Erik de Castro Lopo
+---+
"Visual SourceSafe? It would be safer to print out all your
code, run it through a shredder, and set it on fire."
http://www.wadhome.or
Darryl Miles wrote:
> Erik de Castro Lopo wrote:
> > Anybody have any idea why this is happening? Can this be fixed
> > somehow?
>
> Both times I have replied to your emails my Mail User Agent (Mozilla
> SeaMonkey) did not offer to put your email address into the address
e fixed
somehow?
Erik
--
+-------+
Erik de Castro Lopo
+---+
"Safety versus Expressiveness is a false dichotomy -- you can have both.
Compare ObjectiveCaml with CeePlusPlus: OCaml obtains expressiveness
without compromisin
Sorry, I missed this response from Darryl Miles (probably work
spam filter being overly agressive) but found in in the archive:
> Erik de Castro Lopo wrote:
> > Unfortunately, it seems that openssl allocates memory inside the
> > call to SSL_library_init() that seems to never
d you people be interested in a patch that adds an
SSL_library_release() function that releases all memory and returns
the SSL library to the state it was in before SSL_library_init()
was called?
Cheers,
Erik
--
===
erik de castro lopo
senior design engineer
bCODE
level 2, 2a
Hi!
My excuses if this issues is known or wanted, but I saw no reply to the
posting of somebody else reporting this issue to openssl-users:
If I compile Apache 2.0.54 with beta6 or the latest snapshot, I have to
correct the usage of PEM_F_DEF_CALLBACK to PEM_F_PEM_DEF_CALLBACK
(defined in pem.h)
Hi, everybody, I wanna know if somebody has succefully fragment de OpenSSL
source code. For example, to isolate the rsa function, then you can use that
without depending on OpenSSL instalation?
thanks for all, waiting answers...
--
Reginaldo Oliveira Santos
Computer Science University
- .
ssl -
If someone can help-me.. cause I didn´t find any documentation like this.
thanks for you all.
--
Reginaldo de Oliveira Santos
BRAZIL - UNESP - BAURU
BCC 2003
--
Mensagem
EMAIL PROTECTED]
> Subject: Re: ASN1 implicit/explicit tagging
>
>
> On Fri, Nov 14, 2003, Pierre De Boeck wrote:
>
> > Hi all,
> >
> > I have 2 versions of a DER-encoded pkcs7-enveloped-data and I would
> > like to know which one is correct:
> >
> >
OPTIONAL),
it seems that it is the verImpl.txt that is correct since IMPLICIT tagging
is used.
Am I correct?
Pierre De Boeck
Sr System Engineer
Cipherquest
email:[EMAIL PROTECTED]
BEGIN:VCARD
VERSION:2.1
N:De Boeck;Pierre
FN:Cipherquest
ORG:Cipherquest
TITLE:Sr System Engineer
TEL;WORK;VOICE:+352
Ok, thanks a lot.
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] Behalf Of Dr. Stephen Henson
> Sent: Thursday, October 23, 2003 10:08 PM
> To: [EMAIL PROTECTED]
> Subject: Re: your mail
>
>
> On Thu, Oct 23, 2003, Pierre De Bo
Hi all,
I just try to recompile my openssl applications with
the 0.9.7c and the PKCS12_decrypt_d2i function no longer
exist.
I can use my own decrypt/d2i function but I would prefer
to use what OpenSSL provides as a replacement, if any.
Any idea?
Pierre De Boeck
Sr System Engineer
Hi,
I have read about cross-certification. OpenSSL allow
to have 2 CAs signing each other certificate so they
trust each other.
I want to know first if OpenSSL could allow a
certificate to be signed twice ?
I trying to have a proxy issue from a certificate to
be trusted by two different CA, the
Hi,
We are new developing applications with the openssl libraries. We are
trying to develop a very simple application, we want to create an empty
certificate. The source code of our application is as follows:
#include
#include
#include
#include
void main void ()
{
X509* x;
hi all,
i'm refering to this post i think it's better to write here
there might be a memory leak in ./crypto/pkcs7/pk7_smime.c
at the beginning i thought i was a fool, but i've seen that the same error was
elsewhere in the code (thanks to Changes between 0.9.6h and 0.9.7).
Geoff says :
]
Subject: Re: unresolved external symbol _strsep
In message <[EMAIL PROTECTED]> on Fri, 15
Nov 2002 20:51:13 -0800, "Daniel Conte de Leon" <[EMAIL PROTECTED]>
said:
danielc> I am trying to compile using VC 6,
danielc> and I am having the following error when linking:
da
I am trying to compile using VC 6,
and I am having the following error when linking:
evp_test.obj : error LNK2001: unresolved external symbol _strsep
Any ideas ?
Daniel.
__
OpenSSL Project http://
Hi,
I am trying to compile for Windows 2000 using VC6.
When linking I am having the following error:
"evp_test.obj : error : unresolved external symbol _strsep"
Any ideas ?
Daniel.
__
OpenSSL Project
're not well tested yet - after sucessful compilation.
Cheers.
- Ademar
--
Ademar de Souza Reis Jr. <[EMAIL PROTECTED]>
^[:wq!
diff -ur openssl-0.9.5a-orig/CHANGES openssl-0.9.5a/CHANGES
--- openssl-0.9.5a-orig/CHANGES Sat Apr 1 08:16:39 2000
+++ openssl-0.9.5a/CHANGES Tue Jul
Hi
I don't know if this a bug but I advise you about my problem :
I am running OpenSA on a Windows 2000
server.
Since I have tried to launch the service with SSL
it doesn't work.
I get this error message on the prompt
:
syntax error on line 209 of
d:/opensa/apache/conf/httpd.conf
canno
Hi,
I am attempting to compile opensll (0.9.5a) by means of MetroWerk's
Codewarrior (CW) compiler.
The reason for this being that my company needs all software to run on both
Macintosh and Windoze, so everything is compiled with CW to reduce porting
overhead. (to my knowledge CW seems to be the o
>> Check my original post (I'm copying it below). We're unhappy
>> with OpenSSL's support for nonblocking I/O on servers; currently,
>> it either wants you to rewrite your server to let OpenSSL handle
>> the network I/O, or use BIO pairs to let OpenSSL think it's doing
>> networking still. Nei
When I try to revoke a certificate using Windows NT, I get a problem.
The "index.txt" file is renamed to "index.txt.old", a new file "index.txt.new"
is created, but then failed to be renamed to "index.txt".
I'm almost sure that the reason is that "index.txt.new" is not closed when the
rename
Hi all,
can anyone pass me some url's to servers running openssl-0.9.5a, as I
suspect that IE5.0 on Mac may be incompatible with this openssl
version and NOT with f.i. 0.9.3a.
Also does anybody know why https://www.modssl.org is running openssl-0.9.3a ??
kind regards,
nick.
_
>Hi,
>
>
>I have a big problem with a server listening to https when it receives an IE5
>request from a Mac. I'm on openssl version 0.9.4.
>The server can't negotiate a common cypher with the client and crashes on
>SSL_accept comand. It doesn't show me which is the problem even with
>CHK_SSL(err).
Hi,
Can somebody help me out with the following problem.
I'm developing an openSSL enabled webserver running on MacOS. The
certificate (and key) I use for the server are self-generated. Now,
Netscape (either mac or pc) and Explorer (on PC) seem to reckognise
the fact, when connecting to my se
Pierre De Boeck
Sr System Engineer
Mission Critical (Belgium)
Phone: +32 2 757 10 15 Fax: +32 2 759 276 0
email: [EMAIL PROTECTED]
///
(. .)
-oOO--(_)--OOo
SULT_FROM_WSAERROR(WSAGetLastError());
goto end;
}
if(!res0){
res=E_FRMXCSLIB_SOCKET_TIMEOUT;
goto end;
}
}
Log(I_SSLLIB_CLT_GENINFO,"CSocketConnClientSsl::SslConnect","End"
and it seems that the location
has changed. Any idea of the new location?
Pierre De Boeck
Sr System Engineer
Mission Critical (Belgium)
Phone: +32 2 757 10 15 Fax: +32 2 759 276 0
email: [EMAIL PROTECTED
All,
Trying to verify a message I've just signed with openssl, I've got this message
:
Verification Failure
381:error:21075075:PKCS7 routines:PKCS7_verify:certificate verify error:pk7_smim
e.c:205:Verify error:unable to get local issuer certificate
*
> deraadt> > On Sun, 2 Apr 2000, Richard Levitte - VMS Whacker wrote:
> deraadt> >
> deraadt> > > There's another variant that was proposed here, but hasn't yet
> deraadt> > > been implemented, and it's that the section wouldn't just be a
> deraadt> > > number. Instead, something like 1ssl, 3ssl
> On Sun, 2 Apr 2000, Richard Levitte - VMS Whacker wrote:
>
> > There's another variant that was proposed here, but hasn't yet
> > been implemented, and it's that the section wouldn't just be a
> > number. Instead, something like 1ssl, 3ssl, 5ssl and 7ssl would
> > be used. The result is that
> deraadt> These are function-describing manual pages which have a name,
> deraadt> but that name is not the function they export.
>
> True, they export the concept that is implemented by those functions.
> If you nkow a better way to put a concept into a man page, please tell
> us.
Simple. Mak
Lately, I've been incorporating the OpenSSL manual pages into
OpenBSD'S manual pages. Our project has been working really hard to
make sure that our man pages are perfect.
So, I'm basically running a ton of pod2man's to get them into decent
shape. That's all fine.
However, a few glitches remai
mes.
>
> Thanks
>
> Sue
>
> __
> OpenSSL Project http://www.openssl.org
> Development Mailing List [EMAIL PROTECTED]
> Automated List Manager
wincrypt.h.
For
the RTL conflicts, tries to use the same RTL
(MSVCRT,LIBCMTD,..).
Pierre De BoeckSr System EngineerMission Critical
(Belgium)Phone: +32 2 757 10 15 Fax: +32 2 759 276 0email:
[EMAIL PROTECTED
w can the server detect that the client is
Netscape or IE at the handshake-time, namely before any
application traffic (HTTP in that case) is sent.
Pierre De Boeck
Sr System Engineer
Mission Critical (Belgium)
Phone: +32 2 757 10 15 Fax: +32 2 759 276 0
email: [EMAIL PROT
Hi all,
Where can I find a program that compute
benchmark time for the ciphers, digests and
public key alg of OpenSSL (I use the 0.9.3a version).
In other words, I would like to compute the kind of results that
I can find in the times directory.
Pierre De Boeck
Sr System
Sorry for my question. The "speed" argument
for the openssl exe is all what I need.
-Original Message-
From: Pierre De Boeck [mailto:[EMAIL PROTECTED]]
Sent: Friday, June 04, 1999 2:01 PM
To: Ssl-users; Ssl-dev
Subject: Benchmark
Hi all,
Where can I find
Hi all,
I have developped an S/MIME plug-in with strong
ciphers for Microsoft Exchange Clients like
Outlook 9x.
I would like to do the same for Netscape but I
don't know how. I think that developping a pkcs#11
driver would be the solution but I am not sure.
Any idea?
Pier
Use PKCS12 for that purpose. The CAPI will store the certificate/key
in the storage provided by the CPS. With the default MS CPS,
it is the registry.
But Netscape has its own key/certificate storage (proprietary file
or pkcs11 storage like smart card).
> -Original Message-
> From: [EMAIL
Hi Yuri,
I use the patch of Stephen Henson to
- import RSA private key and CA chain into
Netscape/IE
- retrieve (export) RSA private key and CA chain
from Netscape/IE
You can download it at http://www.drh-consultancy.demon.co.uk/pkcs12faq.html
> ---
1 - 100 of 102 matches
Mail list logo
