Hello,
I was just wondering if using DH for key negociation (say, to generate a
128 bit blowfish key) reduces the number of potential keys in a way that
significantly affects security. How much less safe is using a DH key as
a blowfish key than using a random string, for example?
Thanks,
Haig D
Dar sir,
know any ho to set DN in certificate for MSQL 2000?
Sercienly
Ivo MACHULDA
[EMAIL PROTECTED], tel. 0608 703 889
City-NET CZ, s.r.o., Riegrova 857, 73801 Frydek-Mistek
Spisová značka: C. 20976 vedená u rejstříkového soudu v Ostravě
IČO: 25840908; DIČ: 362-25840908 Riegrova 857, 738 01
On 30 Jul 2001 19:38:04 -, "ganesh kumar godavari"
<[EMAIL PROTECTED]> wrote:
>*** on the server *
>1906:error:1408A0C1:SSL routines:SSL3_GET_CLIENT_HELLO:no shared cipher:s3_srvr.c:769:
>Error: error in SSL_accept()
>***
After running
./Configure linux-elf --prefix=/usr/local --openssldir=/usr/local/openssl, make
fails in the apps directory after the following action:
rm -f opensslgcc
-o openssl -DMONOLITH -I../include -fPIC -DTHREADS -D_REENTRANT -DDSO_DLFCN
-DHAVE_DLFCN_H -openssldir=/usr/loca
Is there a place where I can check how to use the openssl libraries in my
application. I am trying to use it to do a 2 way ssl between 2 processes
talking tcp.
thanks
msrinv
_
Do You Yahoo!?
Get your free @yahoo.com address at http://mail
[EMAIL PROTECTED] wrote:
>
> __
> OpenSSL Project http://www.openssl.org
> User Support Mailing List[EMAIL PROTECTED]
> Automated List Manager [EMAIL P
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
$ $ $ SERIOUS MONEY! What EVERYONE Has Been Waiting For! $ $ $
Starting Today You Can Earn $2,000 to $8,000 in a Matter of Weeks!
For details on this money making opportunity click on the hyperlink below:
http://www.geocities.com/intercash2001
If you have a problem with the ab
On Mon, 30 Jul 2001 18:15:04 -0400, Joseph Su <[EMAIL PROTECTED]>
wrote:
>Please excuze me for a simple question. For all intents and purposes, please
>refer to the sample server program included in the OpenSSL package. My
>questions is: why do we need to *CLOSE* the TCP/IP listening socket, i.e.
Joseph Su <[EMAIL PROTECTED]> writes:
> Hello there,
>
> Please excuze me for a simple question. For all intents and purposes, please
> refer to the sample server program included in the OpenSSL package. My
> questions is: why do we need to *CLOSE* the TCP/IP listening socket, i.e.,
> closesocke
This is true if your certificate is in "MY" store. But if your certificate
store is a file
then they can be in any format you want. For example, I created a
certificate using MS MakeCert
command and then viewed certificate using openssl and it displayed it fine.
Same goes for
private keys.
See Ce
Hello there,
Please excuze me for a simple question. For all intents and purposes, please
refer to the sample server program included in the OpenSSL package. My
questions is: why do we need to *CLOSE* the TCP/IP listening socket, i.e.,
closesocket (listen_sd), before initiating a SSL handshaking
--redirected to -users.
IE will drop the connection under some conditions and then later attempt to
reconnect. It does this when the handshake protocol tells IE something that
requires user input, for example, if the server asks for a client
certificate IE will drop the connection, bring up some
good links! Thanks
- Original Message -
From: "Greg Stark" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, July 31, 2001 12:54 AM
Subject: Re: CA-How to
> http://www.ultranet.com/~fhirsch/Papers/wwwj/article.html
> http://www.modssl.org/docs/2.8/ssl_intro.html
>
>
> =
You're probably asking about CryptoAPI-enabled apps that use the MS
providers. These store the private and public keys in proprietary formats.
They are accessed through the functions of the CryptoAPI. These return the
answers in various appropriate standard formats.
Greg Star
hai everyone,
i am new to ssl, i have spent some time going through openssl documentation.
i have generated a self signed root certificate using
$ openssl req -x509 -newkey rsa:1024 -keyout mykey.pem
-out mycert.pem
and i am currently using the generated certificate and key on the
"Toms,Vincent" <[EMAIL PROTECTED]> writes:
> We have a certificate that was signed by Verisign, and we are
> migrating web servers and can't remember the password on the cert.
> Does any one know a way to pull the password so that we don't have to
> get a new cert.
How did you start your we
Hi, all. I have been using openssl-generated certificates on my VPN
Concentrator 3015 and VPN clients for about 6 months and have just
recently run into some strange behaviour.
Basically, clients who are connecting over a slow connection (dial-up)
are unable to connect, and receive the message "n
> What threat are you concerned to counter?
No threat in particular, I just wanted to figure out how it's done.
Thanks for the information.
Rob
__
OpenSSL Project http://www.openssl.org
User Sup
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello,
We have a certificate that was signed by Verisign, and we are
migrating web servers and can't remember the password on the cert.
Does any one know a way to pull the password so that we don't have to
get a new cert.
Thank you in adv
> Matt Fagan wrote:
>
>
> I am planning to use SSL with the IO completion port model under
> win2K. Does anyone know of an existing BIO suitable for this ? I
> haven't been able to find one, so thought I would write my own.
> However, there seem to be hard-coded BIO_TYPE values for the differe
On Mon, Jul 30, 2001 at 11:34:43AM +0200, Michael Ströder wrote:
> The error "undefined symbol: EVP_rc5_32_12_16_ofb" is raised during
> import M2Crypto if one does not take the announced requirement for
> SWIG _1.3.6_ serious ...
Heh heh. Why ever not, Michael? ;-)
> That's what I don't like a
Thanks
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
On Mon, Jul 30, 2001 at 09:52:19AM -0400, Robert Pungello wrote:
> I am trying to code client- and server-initiated rehandshakes to refresh
> the encryption keys. My understanding is that the rehandshake is performed
> over the existing ssl connection and that this functionality is only
> availab
"Robert Pungello" <[EMAIL PROTECTED]> writes:
> I am trying to code client- and server-initiated rehandshakes to refresh
> the encryption keys.
Why? Unless you're moving a truly enormous amount of data,
this is likely to be of minimal security value.
What threat are you concerned to counter?
>
http://www.ultranet.com/~fhirsch/Papers/wwwj/article.html
http://www.modssl.org/docs/2.8/ssl_intro.html
Greg Stark
[EMAIL PROTECTED]
- Original Message -
From: "Ballou,Matt" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, July 27, 20
_
Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp
__
OpenSSL Project http://www.openssl.org
User Support
I am trying to code client- and server-initiated rehandshakes to refresh
the encryption keys. My understanding is that the rehandshake is performed
over the existing ssl connection and that this functionality is only
available for SSLv3. How do I initiate this procedure? I've naively tried
to s
Hi!
I use Openssl and I've got some problems with verifing the signed email
(with a self signed certificate)
I use
openssl smime -verify -in mail.txt -signer cert.pem -out content.txt
and I get:
Verification Failure
1360:error:21075075:PKCS7 routines:PKCS7_verify:certificate verify
error:.\crypt
On Mon, 30 Jul 2001 12:40:37 +0100, "O'SULLIVAN JOHN"
<[EMAIL PROTECTED]> wrote:
>
>Hi everyone,
>I am running Red-Hat Linux Release 7.1 and I am trying to
>learn how to use OpenSSL from scratch(I have version .9.6.b installed)
>.Could anyone please direct me to some simple, working code to get
Hi everyone,
I am running Red-Hat Linux Release 7.1 and I am trying to
learn how to use OpenSSL from scratch(I have version .9.6.b installed)
.Could anyone please direct me to some simple, working code to get me
started .
Thanks ,
John
__
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
> >Ng Pheng Siong wrote:
> >>
> >> Hi,
> >>
> >> I've gotten a few messages about M2Crypto not working on
> >> Linux (Red Hat
> >> 7.1, SuSe 7.1) because "undefined symbol: EVP_rc5_32_12_16_ofb".
> >>
> >> I understand the packaged OpenSSL on those platforms are versions o
>-Original Message-
>From: Dr S N Henson [mailto:[EMAIL PROTECTED]]
>Sent: 27 July 2001 18:50
>To: [EMAIL PROTECTED]
>Subject: Re: Linux and EVP_rc5_32_12_16_ofb
>
>
>
>
>Ng Pheng Siong wrote:
>>
>> Hi,
>>
>> I've gotten a few messages about M2Crypto not working on
>Linux (Red Hat
>> 7.
34 matches
Mail list logo
