Hi All,
1. First of all thanks for everyone for all the help I have got.
2. There are some options to disable the problem with IE 5.01 SGC that was
report by Itai levy
(http://marc.theaimsgroup.com/?l=openssl-users&m=96286815525666&w=2):
a. Change TLS_ALLOW_EXPERIMENTAL_CIPHERSUITS set
Hi All,
1. First of all thanks for everyone for all the help I have got.
2. There are some options to disable the problem with IE 5.01 SGC that was
report by Itai levy
(http://marc.theaimsgroup.com/?l=openssl-users&m=96286815525666&w=2):
a. Change TLS_ALLOW_EXPERIMENTAL_CIPHERSUITS set
Hi Steve,
Thank you for your replies and help.
I installed the MSIE 128 bit security patch, I connect to my SSL server and
get a "page can not be displayed error" and if I press "enter" on the
browser again
I can connect successfully.
So the patch doesn't fully cure the problem.
I have some q
hi,
i have a problem with SSL_write in a multithreaded enviroment. For
each client connection we start a new thread. On normal operation
all works fine. But when a client connects and disconnects very
fast, the SSL_write break down the whole program with "broken pipe".
Someone know this Proble
Hello,
I have a big problem which I can't solve, so I hope some good soul will
help me.
I upgraded Apache 1.3.9 with mod_ssl module 2.4.8 to apache-1.3.12 with
mod_ssl-2.6.5 (openssl-0.9.5a). The certificates were generated by old
openssl (0.9.4). The problem is:
When I start the server it g
hello Michael,
after receiving 30 copies of your mail I did some check:
> Message-ID: <003c01bfe8ec$4582f740$060a@nexus98>
> From: "Michael Zedeler" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Subject: Stop the listserver!
> Date: Sat, 8 Jul 2000 16:53:25 +0200
> MIME-Version: 1.0
> Con
Hi,
we use OpenSSL 0.9.5a together with Libwww in a CGI on a HP-UX 11.0
platform.
About every 100th request I get a coredump. Strange enough, the coredump
happens in different functions in libcrypto.sl. When I do a backtrace
with gdb I can see that the crash always happens at the beginning of the
hi.
Can you tell me to Error Solve..Please.
system: SEQUENT NUMA-Q (DYNIX/ptx(R) V4.4.7 #5)
Webserver : Apache 1.3.12
openssl : openssl-0.9.5a
Error Message:
symbol in file
__bsd_acceptopenssl.o
__bsd_bind
"Edson E. Watanabe" wrote:
> Did someone write a BIO filter for gzip/zlib compression/decompression?
> Is it easy to write?
> I think I could use crypto/evp/bio_b64.c as a starting point (writing a
> BIO_f_gzip filter for compressing and a BIO_f_gunzip for expanding), but I
> want to know if ar
Module:
md_rand.c
Function:
static int ssleay_rand_bytes(unsigned char *buf, int num)
Synopsis:
The function always fails when entropy < ENTROPY_NEEDED
Description:
The variable "ok" is set as follows:
ok = (entropy >= ENTROPY_NEEDED)
When I was tracing the code, "ok" was set to 0. It the
all,
Is there a way to use the "req" utility only on the command line ?
Let's say I have a valid root CA on my server, and people wants to get client
certificate from this CA, thanks to a web page.
In the html there is a field for "countryName", "stateOrProvinceName",
"localityName"... and per
Hi Veli-Matti,
Veli-Matti Niemi wrote:
>
> hello Michael,
>
> after receiving 30 copies of your mail I did some check:
>
> > [...cut...]
> > Content-Type: text/plain; [...cut...]
> > [...cut...]
> > X-Mailer: Microsoft Outlook Express 4.72.3110.5
> > [...cut...]
> >
> > Could somebody _please_
Which macros are these? I received 30 mails also and didn't sent
anything.
I'm subscribed to other mailing lists and never had this problem. And today
I've already had 4 copies of some mails.
Toni
-Original Message-
From: EXT Veli-Matti Niemi [mailto:[EMAIL PROTECTED]]
Sent: 10.
> Ah come-on! Don't you enjoy Monday morning spam? :-)
> hello Michael,
>
> after receiving 30 copies of your mail I did some check:
>
> > Message-ID: <003c01bfe8ec$4582f740$060a@nexus98>
> > From: "Michael Zedeler" <[EMAIL PROTECTED]>
> > To: <[EMAIL PROTECTED]>
> > Subject: Stop the listser
From: Mark Jorgen Olesen <[EMAIL PROTECTED]>
mjo4> Module:
mjo4> md_rand.c
mjo4>
mjo4> Function:
mjo4> static int ssleay_rand_bytes(unsigned char *buf, int num)
mjo4>
mjo4> Synopsis:
mjo4> The function always fails when entropy < ENTROPY_NEEDED
mjo4>
mjo4> Description:
mjo4> The variable "ok"
From: "Kallweit, Heiner" <[EMAIL PROTECTED]>
Heiner.Kallweit> we use OpenSSL 0.9.5a together with Libwww in a CGI
Heiner.Kallweit> on a HP-UX 11.0 platform.
Heiner.Kallweit> About every 100th request I get a coredump. Strange
Heiner.Kallweit> enough, the coredump happens in different functions
He
-Original Message-
>You can certainly use |p| < 1024 but it's correspondingly weaker.
>I would say that 768 is the lower limit for even fairly casual
>use.
Sounds like it's OK to use for now, but I'll probably switch to RSA when the
patent expires in september. RSA key sizes aren't lim
encap2.ond
On Mon, Jul 10, 2000 at 12:08:59PM +0300, Veli-Matti Niemi wrote:
>
> hello Michael,
>
> after receiving 30 copies of your mail I did some check:
>
> you and your company should use properly working software and
> that is not Microsoft Outlook Express. Clean those Visual Basic-
> based macro
> Hi,
> I hope I understand you right.
>
> Controll : if the Client (browser) have that root CA with that you sign
> the client.cert.request ?
Yes, the root CA installed on the browser is the same as that used to
sign the
user certificate on the server. To clarify, the loaded
Rick Fister wrote:
> Hi,
>
> That's interesting... I thought the command you described below would
> generate the cert into the test.result file (DER encoded). This could then
> be sent to Netscape with the mime type of "application/x-x509-user-cert".
> You may also need
> From: "Kallweit, Heiner" <[EMAIL PROTECTED]>
>
> Heiner.Kallweit> we use OpenSSL 0.9.5a together with Libwww in a CGI
> Heiner.Kallweit> on a HP-UX 11.0 platform.
> Heiner.Kallweit> About every 100th request I get a coredump. Strange
> Heiner.Kallweit> enough, the coredump happens in different
The recent OpenSSL 0.9.6 snapshot (from 1-July onwards I think)
crashes ./bin/ssltest.exe. This is caused by calling a NULL-pointer
in ssl/t1_enc.c:
EVP_Cipher(ds,rec->data,rec->input,l);
This is a macro using 'ds->cipher' and 'ds->cipher->do_cipher'.
Which one is NULL I don't know. I have no
Michael Zedeler wrote:
>
>
> Don't tell me that you're actually starting a flame war because I am
> using Outlook Express at home. Get a life!
>
Michael, I think that he is simply stating: check your side for problems
first - every time you sent a message to the group, we ALL got spammed.
--
Behave "properly"?!? Only 30 copies? I have been swamped with hundreds!
-Original Message-
From: Michael Zedeler [mailto:[EMAIL PROTECTED]]
Sent: Monday, July 10, 2000 9:47 AM
To: [EMAIL PROTECTED]
Subject: Re: Stop the listserver!
Hi Veli-Matti,
Veli-Matti Niemi wrote:
>
> hello M
All,
Okay... this is silly!
Stop sending tons of copies, whatever it takes (upgrade to outlook and open
no attachments)!
But can we please stop being silly women and bickering about it, it friggin
happened I was annoyed too but lets drop this petty you did this, you did
that crap!
Amazing, thes
hi there,
I hope you will help me again:
How do I reuse a SSL-Session on the client-side?
I'm writing a Http-SSL-Client based on Open-SSL.
I do a simple socket connect, then use SSL-connect on the socket.
This is where (in my opinion) Open-SSL and the Webserver are creating a SSL-Session.
On we
Great! Thanks for your help.
Edson E. Watanabe
7COMm
Sao Paulo
Brazil
- Original Message -
From: "root" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Sunday, July 09, 2000 4:26 PM
Subject: Re: BIO Filter for compression
>
>
> "Edson E. Watanabe" wrote:
>
> > Did someone write a BIO
Arnaud De Timmerman wrote:
>
> all,
>
> Is there a way to use the "req" utility only on the command line ?
>
Yes, there's an example in the 'req' manual page.
> And I don't want to use the prompt=no option since there are personal fields.
What do you mean by that? prompt=no is specifically d
Yuji Shinozaki wrote:
>
> What provisions are there for attaching multiple pubkey-encrypted
> symmetric keys to one document?
>
> For example, I want to send an encrypted document several recipients so I
> encrypt the document with a randomly-generated symmetric key, then encrypt
> the symmetric
"Hellan,Kim KHE" wrote:
>
> I have an X.509v3 certificate already loaded into an X509 structure.
> I want to "test it" for different extensions.
> For example: I want to test if it has a KeyUsage extension, if it does, I
> want to test if DigitalSignature is defined in this extension.
>
> What i
>
> [EMAIL PROTECTED] <[EMAIL PROTECTED]>:
>
> > Hi, I've been using the CR generation tool and I noticed that the
> > generated CR are not compatible with other software that expects them. Is
> > their format PKCS#10? If Yes is the field 'SubjectAltName' filled when
> > creating the CR? I
Thank's a lot it really works
Matan
>From: [EMAIL PROTECTED] (Bodo Moeller)
>To: [EMAIL PROTECTED], "Matan Alpha" <[EMAIL PROTECTED]>
>Subject: Re: Problem connecting to several sites in SSL.
>Date: Mon, 10 Jul 2000 23:22:35 +0200 (CEST)
>
>Matan Alpha <[EMAIL PROTECTED]>:
>
> > I encounter a pro
Helo.
http://developer.netscape.com/software/signedobj/jarpack.html
/Douglas
[EMAIL PROTECTED] wrote:
>
> Hello,
> I need the Netscape Signtool Version 1.1 or 1.2 for WindowsNT.
> Sorry but I can't find it on the Net (only V1.3)
> I would be glad if someone could send it to me ([EMAIL PROTECTE
34 matches
Mail list logo
