pkcs12 error code

Hello, The following command openssl pkcs12 -in -out -nocerts to extract a key prompts for a PEM pass phrase and prompts a second time for verification. If there is a verify failure the key is not extracted but the return code is 0.The output file would have the Bag Atrributes and key Attr

pkcs12 error code

Hello, The following command openssl pkcs12 -in -out -nocerts to extract a key prompts for a PEM pass phrase and prompts a second time for verification. If there is a verify failure the key is not extracted but the return code is 0.The output file would have the Bag Atrributes and key Attr

PEM_read_PrivateKey - Memory to Memory

Is there some magic function within OpenSSL where the contents of a private RSA/DSA file can be passed via memory to the equivalent of the PEM_read_PrivateKey function? Ken __ Support InterSoft International, Inc. Voice: 888-823-1541, Internation

RE: MSIE Connectivity

Yikes! I'm making a commercial product here. If IE & Netscape only support RSA, do I have to buy RSA licenses from RSA? Now that their patent is up, is there an open-source solution? I don't even build OpenSSL with RSA in it because of the licensing issue. This is very bad news for me and my c

Re: Generating and using client/browser certificates.

Grant, Thanks for the pointers. The process ran OK for me, but IE was still not happy with the resultant .p12 file, telling me : The input information is invalid. If i assume that the .p12 file i am generating is valid, could it be that the problem lies elsewhere? For example a mismatch with

Re: What need explicit free ?

Kubyshev Andrey wrote: > > Hello openssl-users, > > suppose that i have following code : > > BIO * key=BIO_new(BIO_s_mem()); > BUF_MEM * bm=BUF_MEM_new(); > BIO_set_mem_buf(key, bm, 0); > BIO * b64=BIO_new(BIO_f_base64()); > BIO * inp=BIO_push

What need explicit free ?

Hello openssl-users, suppose that i have following code : BIO * key=BIO_new(BIO_s_mem()); BUF_MEM * bm=BUF_MEM_new(); BIO_set_mem_buf(key, bm, 0); BIO * b64=BIO_new(BIO_f_base64()); BIO * inp=BIO_push(b64,key); now question : for what objects

How to send peer a certificate from client side?

Hi, My question is how a server can authenticate a client? I tried the sample code in demos/ssl, the server is not getting a certificate from client. So how can the client send a message to the server? Thanks. Bo ___ Visit

Re: MSIE Connectivity

Bill Rebey wrote: > > > How is it supposed to work? My Web server is set up to be use the "Server" > mode of SSL (using SSL_set_accept_state and SSLv3_server_method()), and it's > trying to use anonymous SSL (DH, no certificates or private keys). The > cipher suite to use is specifically set v

Re: MSIE Connectivity

Hi Bill, > How is it supposed to work? My Web server is set up to be use the "Server" > mode of SSL (using SSL_set_accept_state and SSLv3_server_method()), and it's > trying to use anonymous SSL (DH, no certificates or private keys). The > cipher suite to use is specifically set via: > > SSL_CT

Re: Speed RSA4096 on VMS returns PRNG not seeded error.

From: "Greaney, Kevin" <[EMAIL PROTECTED]> Kevin.Greaney> I have run into a problem with one of the OpenSSL Apps. Kevin.Greaney> When attempting to run the Speed App with the RSA4096 option, Kevin.Greaney> I ran into a PRNG not seeded error (see log below). I have setup a Kevin.Greaney> RAN

RE: Storing and reading DSA information.

Hi Darryl, here is a code example how to store DSA private key in DER format and load it back from the file. It's a better idea to store the private key with a password... maybe someone will be happy to add some words about it. Ohad. *** STORE ** DSA

Anyone have Win32 DLL for libcrypt?

Greetings, I am currently working on an open source DSA signature scheme for Amateur radio QSL cards. One of the things I would like to do is have a non-US site that I can point people to where they can get Wintel32 DLLs. Is there such a place? thanks 73 Darryl WA1GON ___

Speed RSA4096 on VMS returns PRNG not seeded error.

Hi, I have run into a problem with one of the OpenSSL Apps. When attempting to run the Speed App with the RSA4096 option, I ran into a PRNG not seeded error (see log below). I have setup a RANDFILE and it is pointed to be a system-wide logical. I also setup a .RND in my SYS$LOGIN

Storing and reading DSA information.

Greetings, I am trying to use the DSA functions in the crypto library. Do someone have some examples of storing and reading DSA information from a file or can point me in the right direction? Thanks Darryl 73 DE WA1GON __ Open

OpenSSL on OS/390 UNIX

Hello, I'm trying to install OpenSSL 0.9.6 on OS/390 UNIX, and having trouble to run the configure script. Is OS/390 Unix supported? If yes, how can I install it? If not, are there any ported version available? I have OS/390 V2R8 now and will move to V2R10 soon. Thank you very much for any he

Re:

Craig Wooster wrote: > > Craig Wooster > Manager of System Administration > BroadRiver Communications > (678) 566-1190 > > > Name: winmail.dat >winmail.datType: application/ms-tnef >

Re: RSA, Perl and OpenSSL

Hello Jason, Interesting, your package is exactly what I need, Is it or will it be available to everyone? I am not a Perl guru so I can't build such a package by myself and do not have time. Your help is welcome. Thanks. Maxime Dubois CGEY Jason Aras wrote : > I have a RSA.pm That i cobbled t

Re: PKCS8 and JAVA Application

Greg, Thanks for your help. I am using the Sun's classes for my application. KeyStore keyStore; byte[] bytes; X509Certificate[] certs = new X509Certificate[2]; I am calling this function keyStore.setKeyEntry("testKey", bytes, certs); and it is throwing exceptions. java.lang.NullPointerExc

MSIE Connectivity

I have a Web server written around OpenSSL. My own OpenSSL-based client connects to my server just fine, and MSIE connects fine without SSL, but when I try to use SSL from the browser (by specifying https://localhost/ as the URL Address), it won't negotiate a connection. Th

How to Generate Web Server Certificate??

Hi All, I have installed openssl 0.9.6 on Solaris 7 (Intel) & I think it works fine, since I am able to use openssh 2.5.1. I want to generate a certificate for Netscape Web Server so that I can run a secure server. How do I do it?? The web server runs on a different machine. Can somebody please

Re: hi there... help needed..

I think you can to use the CA.pl script to create your CA. CA.pl is found in the misc directory. command like "CA.pl -newca" will set up the CA and create the demoCA directory Patrick - Original Message - From: Aslam <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, March 01,

Windows 2000 server installation problems

Hi! I am trying to install OpenSSL on a Windows 2000 server machine running the latest Active Perl, and with Mingw32 and GNU. I have followed all the steps in INSTALL.W32, and recieved 1 error: process_begin: CreateProcess((null), gmkdir outinc/openssl, ...) failed. make (e=2): The system cann

Re: ÁÔÐÇÈËÊÂÐÅÏ¢¿ìµÝ--¸öÈË°æ

When would somoene ban this ??? Come on... > [EMAIL PROTECTED] wrote: > > > --

猎星人事信息快递--个人版

Title: Untitled Document ÁÔÐÇÈËÊÂÐÅÏ¢¿ìµÝ£º2001Äê2ÔÂ23ÈÕ Èȵ㹤×÷ | ÈËÊÂÐÂÎÅ | ÇóÖ°°Ù¿Æ | ÈËÊ°¸Àý Èȵ㹤×÷ TOP 5

hi there... help needed..

Hi, I installed openssl - 0.9.6 and I'm not getting how do I create a CA for myself. After complete compilation and all, I still do not have any directory like demoCA or usr. Please help me in this.. Thanks Aslam __ OpenSSL Proj

Re: mailtag.com is fixed, I think

It would be nice to know which responders are causing these problems, then contact the authors w.r.t. "x-list-*" headers (and ignore messages with them). "Michael H. Warfield" wrote: > On Sun, Feb 25, 2001 at 11:29:34PM -0500, Rich Salz wrote: > > I got email from webmaster at mailtag. I think

SV: SMIME. Problems with Outlook

Hard to say without the "mail.eml" file. What is the e-mail address in the my_signature.pem certificate?   You are welcome to send me the mail.eml file and I will do some checking. Best regards Kim Hellan KMD / KMD-CA http://www.kmd-ca.dk Mailto:[EMAIL PROTECTED]   -Oprindelig

Re: Generating and using client/browser certificates.

Scott, Client authentication requires the client to sign something. This means the client needs to have the private key along with their certificate. You can create a PKCS#12 file which includes all this information and import it into the MS system. You should then see the results you are loo

SMIME. Problems with Outlook

Hi, I have generated with the OpenSSL 0.9.6 a signed smime, with the following syntax: openssl smime -sign -in mail.txt -out mail.eml -signer my_signature.pem -inkey my_signature.rsa -from [EMAIL PROTECTED] -to [EMAIL PROTECTED] The my_signature.pem is a certificate which was issued for signa

SV: validity time

X509* pCert; X509_gmtime_adj(X509_get_notBefore(pCert), 0); // Start nowX509_gmtime_adj(X509_get_notAfter(pCert), (long) 60*60*24*ulDaysValid);     Kim Hellan KMD / KMD-CA -Oprindelig meddelelse-Fra: Pablo Millet [mailto:[EMAIL PROTECTED]]Sendt: 1. marts 2001 14:24

Re: validity time

This is how I do it, I stole it from the examples. X509 *pCert; X509_gmtime_adj(X509_get_notBefore(pCert),0); // valid from X509_gmtime_adj(X509_get_notAfter(pCert),(long)60*60*24*expiryYears*365); //valid to > How do i set the "Valid from" and/or "Valid to" parameters in the > certificate

validity time

Hi.   How do i set the "Valid from" and/or "Valid to" parameters in the certificate?     ~~Pablo MilletRed  MessageWeb Developer & DesignerMob.: 0706 - 762 556   www.redmessage.com~~