I've downloaded the 0.9.5a release and admired the new documentation,
but
still cannot find what I'm looking for. Does the 'openssl' program
include
a facility for generating an X.509 certificate for a file specified on
the
command line?
If not, can somebody point me to a demo program that does
I just installed Apache-SSL on SunOS. Everything seems to be working
ok, however I am getting this error messages in the error log file.
[Wed Apr 26 11:43:06 2000] [error] SSL_accept failed
[Wed Apr 26 11:43:06 2000] [error] error:24064064:random number
generator:SSLEAY
_RAND_BYTES:PRNG not
First, thanks to Marty and Jeronimo, who wrote me how to build the
openssl-0.9.5a package in WinNT with VC++. I now get clean 'out of the box
builds.'
I would like to build with the 'rsaref' option, but I have not been
successful. I configured with 'VC-WIN32' 'rsaref' 'no-rc5' no-idea', then
On Wed, Apr 26, 2000 at 04:49:19PM +0200, Alexander 'Alfe' Fetke wrote:
...
there should be no problem in keeping up a session for several hours; in
fact, a week should (technically) be no problem. ssl even provides a
feature to cache ssl connections which allows communicators to skip the
On 26 Apr 2000, at 9:09, Stefan Wold wrote:
Dr Stephen Henson wrote:
It may be a PKCS#7 structure. If you have OpenSSL 0.9.5 or later
try:
openssl pkcs7 -in cert.crt -print_certs
Well that didn't work either.
sorry for breaking in...
why not have verisign (or thawte?) make a
-BEGIN PGP SIGNED MESSAGE-
John, I have 600 sites, each with their own key/cert and 16 servers (soon
to be 32 servers) how can I possibly plan on entering the passphrase in
for each site on each server on startup?
David Lang
On Wed, 26 Apr 2000, John Hartnup
wrote:
Of course,
At 12:53 PM 4/26/00, you wrote:
Of course, nothing is as secure as a human being typing the passphrase in
at startup, but we've established that that is too much like hard work :).
Sorry, .. but you missed the point. If you are rebooting a server:
1) In many cases the person doing the
hello, i had installed apache-ssl and openssl.0-9-5a but when i tried to do
make certificate
the process fail, i read the faq and install egd-0.7 but i have problem
using egd with openssl.
does anyone have a guide to integrate openssl and egd or tellme how use egd
with openssl because i not
From: Andrew Malato [EMAIL PROTECTED]
Subject: SSL-SEED errors
Date: Wed, 26 Apr 2000 14:05:47 -0400
Message-ID: [EMAIL PROTECTED]
andy I just installed Apache-SSL on SunOS. Everything seems to be working
andy ok, however I am getting this error messages in the error log file.
I'm not sure
-Original Message-
From: Richard Levitte - VMS Whacker [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, April 26, 2000 8:45 AM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Re: docs for openssl programming in C
From: Robert Sandilands [EMAIL PROTECTED]
robert The idea about a
"David" == David Lang [EMAIL PROTECTED] writes:
David John, I have 600 sites, each with their own key/cert and 16 servers (soon
David to be 32 servers) how can I possibly plan on entering the passphrase in
David for each site on each server on startup?
You hire more people, and avoid re-boots.
Mr. Gray -
On Wed, 26 Apr 2000, Andrew W. Gray wrote:
If you want the complete developer studio with workspace and all of
the projects and complete set of instructions, you can get that at
http://www.iconsinc.com/~agray/ossldev/
Thanks for the advice and for your _very_ substantial MSVC
On Wed, Apr 26, 2000 at 02:46:19PM -0500, Leland V. Lammert wrote:
Of course, nothing is as secure as a human being typing the passphrase in
at startup, but we've established that that is too much like hard work :).
Sorry, .. but you missed the point. If you are rebooting a server:
1) In
On Wed, 26 Apr 2000, David Oppenheim wrote:
Is there a standard way, or has anyone come up with a way, of reasonably
easily building a certificate into compiled code ? I guess I can think
of several, but if there's a (semi)standard, I'd rather follow it, and not
reinvent the wheel.
one
Personally, I would prefer OpenSSL for Dummies. The Nutshell book would be
an excellent follow on for advanced users.
James Dabbs
[EMAIL PROTECTED]
Director of Engineering
TGA Technologies, Inc.
Suite 140, 100 Pinnacle Way
Norcross, GA 30071
770-441-2100 ext 126
-Original Message-
-BEGIN PGP SIGNED MESSAGE-
did you ever get an answer back on this? I am looking at doing the same
thing and having difficulties figuring out what I need to do.
David Lang
On Tue, 18 Apr 2000, Mathieu Legare wrote:
Date: Tue, 18 Apr 2000 14:42:02 -0400
From: Mathieu Legare [EMAIL
Does anyone know anything about that???
--Tal
-Original Message-
From: James Woods [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, April 26, 2000 6:52 PM
To: Tal S Eilon
Subject: RE: What's up with the ssleay.org domain???
= Original Message From "Tal S Eilon" [EMAIL PROTECTED] =
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
I have written my own SSL server using openssl-0.9.4, and have been
running it for a few weeks now. Every once in a while the server will die
from an abort() in crypto/bn/bn_lib.c:BN_num_bits(). Has anyone else
seen this problem? Any help as far as diagnosing or fixing the problem
would be
Im running an OBSD 2.6 machine with Apache and OpenSSL. I created an
standard PEM certificate, self signed, which of course worked with
netscape but not MSIE. I then re-formatted it to DER as per the FAQ
instructions and reloaded apache. MSIE still fails to connect, receiving
only a "page
Maybe it is not a question about SSL.
I composed a little program to send a HTML page to IE with SSL.But when IE asks user
to choose a certificate,it disconnected with the server.I have to connect again.When
IE warns that the subject name in server's certificate doesn't match the host name,the
David Lang wrote:
-BEGIN PGP SIGNED MESSAGE-
did you ever get an answer back on this? I am looking at doing the same
thing and having difficulties figuring out what I need to do.
David Lang
On Tue, 18 Apr 2000, Mathieu Legare wrote:
Hi,
I have just used the pkcs12
22 matches
Mail list logo