> Hello, I am not in USA. I want to use openssl for
> commercial purpose. Are there some legal problem
> I must be cautioned ? I have used DSA instead of
> RSA , but my browser(netscape 4.5) did not support.
You are allowed to use OpenSSL commercially as long as you attribute
it to the authors (
David Murphy <[EMAIL PROTECTED]>:
> 1. We have been told that we need a DSA (not RSA) certificate when
> [using] Diffie Hellman.
Not true. If you want to use Diffie-Hellman to avoid the patented RSA
algorithms, then obviously you cannot use RSA (leaving only DSA for
the certificates because DH
-BEGIN PGP SIGNED MESSAGE-
The thing with SSL virtual hosts is that they have to have an IP per host
otherwise the web server cand distinguish between them.
You'll allways get the same certificate for all virtual domains.
SSL certificate exchange happens before HTTP so there's no way to t
Aaron D. Turner <[EMAIL PROTECTED]> wrote:
>
>On Mon, 20 Sep 1999, Dave Neuer wrote:
>
>> -Original Message-
>> From: Aaron D. Turner <[EMAIL PROTECTED]>
>> To: Stunnel Maillist <[EMAIL PROTECTED]>;
>> [EMAIL PROTECTED] <[EMAIL PROTECTED]>
>> Date: Friday, September 17, 1999 5:43 PM
>> Sub
Admin Mailing Lists wrote:
>
> Ok, I just read the mailing list archive and found Stephen's about
> converting netscape certs, but I'm confused at step 8. Do I put key.db and
> cert5.db in the 4.0 directory as themselves or renamed them as the
> formerly deleted key3.db and cert7.db.
Put them in
If anyone has a solution for my problem you help would be greatly
appreciated. When I try to make openssl 0.9.4; sha_dgst.c will not
compile properly. The output of the make command follows. I'm using
GCC 2.95.1.
making all in crypto...
( echo "#ifndef MK1MF_BUILD"; \
echo " /* auto-generated
> But if you remove a revoked certificate from the list, how you can
> remember
> the validity period of a certificate ?
It is removed after expiration. And you always remember the validity
of the period becuase (I hope) you somewhere have a log.
Regards Rene
--
---
On Mon, 20 Sep 1999, Dave Neuer wrote:
> -Original Message-
> From: Aaron D. Turner <[EMAIL PROTECTED]>
> To: Stunnel Maillist <[EMAIL PROTECTED]>;
> [EMAIL PROTECTED] <[EMAIL PROTECTED]>
> Date: Friday, September 17, 1999 5:43 PM
> Subject: What US companies need to know about RSA
>
>
On Mon, Sep 20, 1999 at 09:42:07AM -0400, Admin Mailing Lists wrote:
> Secondly, i have a httpd.conf file for each domain..to setup a domain on
> port 80 and 443 how do i specify the SSL cert on port 443 only in that
> domain's config file? Do i have to make a virtual host directive for that
> po
[error] error:1407609C:SSL
routines:SSL23_GET_CLIENT_HELLO:http request
What am I missing? I have created all the
certificates and have eliminated all daemon errors and config errors, but I get
this error when ever I try to connect to the secure socket port (443)... any
help would be great
Hi,
probably my question is a stupid one, but how can I determine the maximal
size of from buffer in RSA_public_encrypt function?
I wrote a simple program that tryes to encrypt the test buffer and I
changed the size of the buffer to find the maximal value. It was 86 bytes
with key size 1024 bit
>Well if you want to be illegal why bother downloading RSARef.
>Also you cant legally donload it anymore because RSA doesnt
>offer it for download anymore.
>I asked them about it and tey said that i have to by BSAFE or any other
>toolkits available fronm them. (I cant even afford buy Books, how th
Ok, I just read the mailing list archive and found Stephen's about
converting netscape certs, but I'm confused at step 8. Do I put key.db and
cert5.db in the 4.0 directory as themselves or renamed them as the
formerly deleted key3.db and cert7.db.
I'm also confused on step 10. I dont understand t
-Original Message-
From: Aaron D. Turner <[EMAIL PROTECTED]>
To: Stunnel Maillist <[EMAIL PROTECTED]>;
[EMAIL PROTECTED] <[EMAIL PROTECTED]>
Date: Friday, September 17, 1999 5:43 PM
Subject: What US companies need to know about RSA
>
>
>After a lot of research and talking with people fro
> -Original Message-
> From: Herve Regad-Pellagru
> [mailto:[EMAIL PROTECTED]]
> Sent: Sunday, September 19, 1999 1:29 PM
> To: [EMAIL PROTECTED]
> Subject: server/client authentication with stunnel
>
>
> Hi all !
>
> After trying many hours to get client/server authentication via
> c
Do you have a copy of CAcert.pem someplace on the client, and have you told
the client-side stunnel where it is?
> -Original Message-
> From: Herve Regad-Pellagru
> [mailto:[EMAIL PROTECTED]]
> Sent: Sunday, September 19, 1999 1:29 PM
> To: [EMAIL PROTECTED]
> Subject: server/client authe
Hi, I'm just starting to run apache 1.3.9 with v1.3.7 of the apache-ssl
patch, and openssl 0.9.4
This is all on Caldera Linux, 2.2.10 kernel
I've BEEN running Netscape Fasttrack for a while now..which has built in
SSL support.
I have SSL certificates with my Netscape server, how specifically wo
17 matches
Mail list logo