All,
Using openssl on command line (openssl pkcs7 -in smime.p7s -inform DER
-print_certs), is this possible to only get infos of the end user certificate ?
Many thanks.
__
OpenSSL Project
At 11:01 AM 2/22/01 +0530, you wrote:
Forgive my possible ignorance, but the common name of the certificate would
have to match the NATed apparent address (A entry to the router's public IP)
of the server, right ?
Regards,
Sandipan
The CN is typically the site name, not IP, .. as such, as long
I have a NetGear RT311 (Great box) which does it all...
You do have to specify which internal IP address that incoming requests
should go to.
(i.e. if your OpenSSL server runs on pc with an internal (INTRANET) IP
address 10.0.0.99, you need to configure requests oin port 443 to go to
that
"Leland V. Lammert" wrote:
The major sticking point is that the NAT box must be setup to:
1) Handle an 'inside' server.
2) Proxy SSL requests on port 443.
As someone else responded, many of the NAT boxes will do this, .. but I
have seen some that will not.
And if it doesn't you can
However, fd:number doesn't say anything about what happens when you pass
the same fd to -passin and -passout. I assumed it behaved the same way
as file:pathname, and so i'm trying to pass both passwords through the
same fd, but i'm having problems. Before i wade too deeply into the
Hello!
I have got a problem when I'm trying to install the latest snapshot.
The error says that it can't find the "unistd.h".
I'm using windows.
What is the problem?
--
--
Antonio Ruiz Martnez
Facultad de Informtica-Universidad de Murcia
Title: Untitled Document
ÁÔÐÇÈËÊÂÐÅÏ¢¿ìµÝ£º2001Äê2ÔÂ23ÈÕ
Èȵ㹤×÷
| ÈËÊÂÐÂÎÅ
| ÇóÖ°°Ù¿Æ
| ÈËÊ°¸Àý
Èȵ㹤×÷
TOP 5
No, the call will not necessarily block until 10 bytes are read. Timeouts
have to be managed with the underlying transport, e.g. using the sockets
API; openssl does not provide an API for doing this.
To avoid truncation attacks, your application needs to know when it has
gotten all the data it
I don't think you need to allocate memory for server_key; BN_new() should do
that for you and the rest of the BN_*() routines will allocate memory as
needed to accomodate the number.
In the code below, it looks like you forgot the DH_generate_key() function
call. Your comment suggests you
There is actually a book, SSL and TLS by Eric Rescorla, that has some good
examples in both C and java (using PureTLS). The source from the book is
also available online, at www.rtfm.com/sslbook. Goodluck ;-)
-Ian
-Original Message-
From: jackson e.
To: [EMAIL PROTECTED]
Sent:
On 22 Feb, jackson e. wrote:
Could anyone point me to some basic SSL coding examples?
ftp://forelle32.wohnheim.uni-kl.de/pub/apps/echohttpd-1.0.tar.gz
apps/s_client.c apps/s_server.c demos/ in the openssl distro.
The applications listet on http://www.openssl.org/related/apps.html.
--
tsch,
- Original Message -
From: "Dr S N Henson" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Joseph Ashwood wrote:
Does anyone have some code onhand that will take a PKCS 12 file, lookup
a
known name, grab a DSA key and hand it back?
[snip most of what I said]
Alternately, does anyone know
Hi,
I've tried to install openssl-0.9.6 on a few boxes. Went fine on
Slackware but not so good on Redhat (6.1). They both use gcc 2.91.66
The Redhat box comes with a 'virtual memory exhausted' message.
I tried everything I could think of. Even a search of some
mailinglist archives didn't
Hi,
I am trying to configure Apache 3.14 with SSL ( using OpenSSL / modSSL) ON
Windows 2000 server. I am able to get the application working using test
verisign certificate for Netscape browsers and IE 5.5. But when it comes to
IE 5.0, It does not even connect to the server home page properly.
I revisited the FAQ and re-reread the list archives. I tried a few things.
A few things from the FAQ actually made things worse! :)
But the one incantation that seemed to work was to add the following line to
apache.conf:
SSLProtocol all -SSLv3
Thanks all for your help!
Mark
on
15 matches
Mail list logo