Creating client certificates

2002-03-13 Thread Steve Boals
So I created a cert request with IIS 5.0 and signed the cert with my Red Hat Linux box. I installed the cert and all works well. Now I want to require client certificates on the IIS box. How do I go about creating client certs? I would like to do the creation on the Linux box. Is this

Net::SSLeay .. https-proxy-sniff.pl .. How can I snoop an MSIE browser session.

2002-03-13 Thread POP account for superquote.co.uk
Hi, I'm using the most excellent https-proxy-sniff from the perl module Net::SSLeay. It works fine to sniff a secure transaction from a linux client on the local host ( to a remote server ), but fails when I try to sniff a transaction from MSIE on a windows client on the local ( private )

SSL_pending() and SSL_ERROR_WANT_READ

2002-03-13 Thread Patrick Li
Hi, I am experiencing the followings when running my SSL client on nonblocking sockets. 1. SSL_read() fails and SSL_get_error() returns SSL_ERROR_WANT_READ 2. my client program calls SSL_pending() and it returns non-zero. 3. since SSL_pending() is returning non zero, that is data available

Re: Unable to find an RSAREF shared library (librsaref.so)

2002-03-13 Thread dirk van der Giesen
Ok, This will be my last attempt (for today i guess ;-)) I know to get the latest openssl version and i did from openssl.org (that's where we're all from right?) I'll show a part of the finished test and make messages: OpenSSL 0.9.6c 21 dec 2001 built on: Tue Mar 12 19:12:19 PST 2002

Re: Net::SSLeay .. https-proxy-sniff.pl .. How can I snoop an MSIE browser session.

2002-03-13 Thread Sean O'Riordain
For all sniffing, I use ethereal (.com), free and very useful - recently helped me setup an ipsec connection - pointing out that the two ends were proposing different crypto sets. While I haven't used it for debugging ssl, I'd be quite sure there is useful information to be gleaned. Sean

RE: SSL_pending() and SSL_ERROR_WANT_READ

2002-03-13 Thread Shaw, George
Hi, SSL_pending() returns the number of bytes in the SSL buffer that have been decrypted by not requested by SSL_read(). This will occur when there is a mismatch between the number of bytes requested by SSL_read() and the block size used to encrypt/decrypt the data. SSL_ERROR_WANT_READ (and

Re: Net::SSLeay .. https-proxy-sniff.pl .. How can I snoop an MSIE browsersession.

2002-03-13 Thread Martin Witzel
Check out ettercap ( ettercap.sourceforge.net ) No personal experience, though. Regards, Martin __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL

certificate issuer unknown

2002-03-13 Thread Eric D. Holsinger
We updated our Verisign certificate last night and Netscape 6.x gives a warning when accessing the page "The certificate was issued by a certificate authority that Netscape 6 does not recognize." If the user clicks "continue" everything seems to work fine. I sent a support request to