On Wed, Jun 21, 2000 at 01:40:56PM -0700, Scott Pasnikowski wrote:
> But the "req" command that seems to be used to create a self
> signed cert does not have this (-rand) param.
>
> Did I miss something somewhere? The openssl.cnf file has the
> entry for the random file,
From: Lutz Jaenicke <[EMAIL PROTECTED]>
Lutz.Jaenicke> Probably it would be practical to add the "-rand"
Lutz.Jaenicke> option to "req".
Your wish is my law (at least iun this case :-)). In a commit in your
favrotie repository in a few (after the test compile and run).
--
Richard Levitte \
To generate the key (file key.pem) Which option I have to use? that depends
of the algorithm I have chosed in the Certificate?
--
Albert SERRA
===
Integrated Systems Laboratory (DE/LSI-EPFL)
email: [EMAIL PROTECTED]
begin:vcard
n:Serra Pages;Albert
x-
Sorry,
thank you in advance
Albert Serra wrote:
To generate the key (file key.pem) Which option I
have to use? that depends of the algorithm I have chosed in the Certificate?
--
Albert SERRA
===
Integrated Systems Laboratory (DE/LSI-EPFL)
email: [EMAIL
Thanks for your patch kit.
I just tried to integrate the patch into OpenSSL-0.9.5a.
There the following error occurred:
make[2]: Entering directory
`/home/nardmann/CompilationTmp/Linux-i86pc/openssl-0.9.5a/crypto/ocsp'
gcc -I.. -I../../include -DTHREADS -D_REENTRANT -DL_ENDIAN -DTERMIO -O3
-fomi
From: Heiko Nardmann <[EMAIL PROTECTED]>
h.nardmann> Thanks for your patch kit.
h.nardmann>
h.nardmann> I just tried to integrate the patch into OpenSSL-0.9.5a.
h.nardmann> There the following error occurred:
h.nardmann>
h.nardmann> make[2]: Entering directory
h.nardmann> `/home/nardmann/Compil
Thank you all for all the discussion and education. I've learned a great
deal from this.
I've changed my original snake-oil RNG seed generator to use the results of
the Window Performance Counter (a very high resolution clock). The trials
that I've run and compared side by side appear to gener
Hi,
I have compiled the cli.cpp and serv.cpp. But when I execute
this programs it appears this error:
[40=2]serra@lsisun4/~/OpenSSL/opensslsun/demos/ssl>server
Connection from 7f01, port f519
SSL connection using (NONE)
Client does not have certificate.
10790:error:1407D0E5:SSL routines:S
Brian (et al),
Here's what I'm doing. I'm using the RTL's random number generator in this
thing, but what I'm counting on more than the randomization of the Sleep
times is the fact that Windows takes a different amount of time to complete
each system call, code segment, etc. (and hence each Slee
Date: Thu, 22 Jun 2000 12:40:42 -0400
From: Bill Rebey <[EMAIL PROTECTED]>
In fact, to test this theory, I changed all of these to just "Sleep(1)" (no
random sleep time) to remove the RTL randomizer from the equation
altogether, and the results from consecutive trials are ver
> Can you tell me which manual page gives that precise syntax as the
> command to create a new request?
>
> As someone else pointed out you need the -new option, without it it
> expects an already existing request on standard input.
Ahhh...
Forgive me. I got some mail that was a bit misleading.
Rich Salz wrote:
>
> > Hello again, folks. I have a bit of a dilemma here.
>
> Yes, you do.
Hey, I'm flattered - I received a reply from Mr. INN. ;) Thanks
for your reply. Thanks also to Dr. Henson and Michael Sierchio
for theirs.
There are two issues at hand:
1) picking the appropriate ciphe
On Thu, 22 Jun 2000, Scott Pasnikowsiki wrote:
> That sort of points to the idea that the Win32 side is not being
> tested much. If I can confirm this is the case (that -rand is needed
> on Win32 to gen a cert) then I have my answer. (use a commercial
> product)
No. It points to the fact that t
Taral wrote:
>
> On Thu, 22 Jun 2000, Scott Pasnikowsiki wrote:
>
> > That sort of points to the idea that the Win32 side is not being
> > tested much. If I can confirm this is the case (that -rand is needed
> > on Win32 to gen a cert) then I have my answer. (use a commercial
> > product)
>
>
> > No. It points to the fact that the whole thing isn't tested much on
> > machines without good randomness sources in general.
>
> openssl is one of those projects that could desperately use a
> commerical reseller/support couterpart a-la redhat
> or sendmail (the company)
>
> it kinda mysti
Scott Pasnikowsiki wrote:
>
> > > No. It points to the fact that the whole thing isn't tested much on
> > > machines without good randomness sources in general.
> >
> > openssl is one of those projects that could desperately use a
> > commerical reseller/support couterpart a-la redhat
> > or send
Hi Rossen,
I was able to create a chain of 3; end entity -> Subordinate CA -> Root. I
used the Netscape CA as the issuer of the entire chain.
I was able to do one-way SSL authentication with this chain. I, however,
couldn't get the Server to authenticate me for two-way authentication (even
tho
Hi,
Is it possible to create chain sertificate using regular certificate signed
by a public CA.
For example if I have certificate for some.mysite.com signed by Equifax
would it be possible to ceate chained sertificate for other.mysite.com?
I've tried some things but the result was "Can not verify
18 matches
Mail list logo
