Re: free OCSP-responder

2001-09-27 Thread Mathew oBrian
within my diploma thesis I work with OCSP. I would like to test some client software (Netscape and Baltimore Mailsecure) supporting OCSP with some OCSP-Responder. As the ValiCert OCSP-Responder is not as cheap as I like it, I´d like to aks you if you know some free OCSP-Responder or

OCSP module for Apache

2001-09-27 Thread Sylvain . Maret
Hello, We are working with a Engineering school to devellop a free OCSP module for Apache. Does somebody have some documentation how to start with this work ? Many Thanks, Sylvain Sylvain

Re: Please help me!

2001-09-27 Thread Valery
Hello Ryan! Thank you very much. I have added the line in the Certificate Extensions section of my openssl.cnf file: crlDistributionPoints=URI:http://cert.vrn.ru/crl/main.crl and then I made some certificates with this extensions. Such certificates have the following value of CRL Distribution

keyUsage - Documentation

2001-09-27 Thread Patrick Hachenberg
Hi everybody, I'm in search of a full description of the keyUsage-options (digitalSignature, nonRepudiation etc.). Who can help me ? Patrick __ OpenSSL Project http://www.openssl.org User

Random number generation

2001-09-27 Thread Ashada Karunaratna
Hi, I am looking for an powerful random number generation library for an application. Is open ssl has such library. ( not pseudo random generations ) Is anyone know ? Regards Ashada __ OpenSSL Project

Re: Random number generation

2001-09-27 Thread crispin
On Thu, Sep 27, 2001 at 03:18:49PM +0600, Ashada Karunaratna wrote: I am looking for an powerful random number generation library for an application. Is open ssl has such library. ( not pseudo random generations ) Is anyone know ? If your under Unix, why not use /dev/random or /dev/urandom.

Re: Client Authentication Problem

2001-09-27 Thread Götz Babin-Ebell
Eric Rescorla wrote: Götz Babin-Ebell [EMAIL PROTECTED] writes: And how gets he the connection IP-Address - FQDN ? -He uses DNS. I think you need to reread his message since that's not what he says. Hm: snip client authentication. After a successful SSL_accept() I have some logic that

Certificate Problem with Sendmail

2001-09-27 Thread David . Smith
Folks, I'm evaluating the use of Sendmail with TLS for a client. I'm using Sendmail 8.11.6 and openssl 0.9.6b, running under Solaris 2.6 I've created a CA, and a server certificate, apparently successfully. When I try and start Sendmail using these, though, I get the following errors in the

RE: Random number generation

2001-09-27 Thread Ryan Hurst
If you are looking for a software based solution the OpenSSL PRNG library is good. There any many interesting software solutions for gathering seed for the PRNG as well, egd.pl will use a plethora of system information (on unix) to provide seed. However hardware based entropy solutions are a

Re: keyUsage - Documentation

2001-09-27 Thread Dr S N Henson
Patrick Hachenberg wrote: Hi everybody, I'm in search of a full description of the keyUsage-options (digitalSignature, nonRepudiation etc.). Who can help me ? Try the FAQ. Steve. -- Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/ Personal Email: [EMAIL PROTECTED]