Re: OpenSSL 0.9.6i generating invalid certificates

On Wed, Jul 02, 2003, Jeremy Wiebe wrote: > Hello again, > > I was using OpenSSL 0.9.6g for my development. I noticed that 0.9.6i was > released and decided to test it. > > I found that using the same scripts as for version 0.9.6g generates > certificates that Windows deems invalid. I have a

Re: wildcard certificates

On Wed, Jul 02, 2003, Lu, Steve wrote: > Hi All, > > Can Openssl be used to create wildcard certificates? > To what extend does OpenSSL support wildcard certs? > Yes it can create them since they just have components with certain characters like '*' in them e.g. *.foobarinc.com . Currently it

wildcard certificates

Hi All, Can Openssl be used to create wildcard certificates? To what extend does OpenSSL support wildcard certs? Thanks, Steve __ OpenSSL Project http://www.openssl.org User Support Mailing List

Digital sign and verification

Hello Excuse me by me very poor English I must to program a digital sign (and verification) component based on PKCS7 files. I have to sign a document and this sign must be out in PKCS7 format file. The document is detached (¿not included?). I think when I'll verify this sign file I'd use

RE: SSL_accept is too slow:(

> 3) Provide a better explanation of what's wrong and where. You say you're using a ppc603? What speed? My experience with a ppc603 at 133Mhz says an SSL_accept takes about 1.3 seconds, most of it at full throttle on the processor. If this is your experience (scaled by your processor speed) and t

Re: License question: What is considered promoting?

On Wed, Jul 02, 2003, [EMAIL PROTECTED] wrote: > Hi, > > I have a question regarding the combination of phrases 3 and 4 of the > OpenSSL license: > > > * 3. All advertising materials mentioning features or use of this > > *software must display the following acknowledgment: > > *"This p

Re: Checking client certificate

On Wed, Jul 02, 2003 at 06:38:08PM +0100, Marius Cabas wrote: > I have already tested them and the same errors occures. What does this output? openssl s_client -connect -cert -key -msg -showcerts -- Ng Pheng Siong <[EMAIL PROTECTED]> http://firewall.rulem

Re: session cacheing in OpenSSL

On Wed, Jul 02, 2003 at 02:31:26PM +1200, Jason Haar wrote: > I've seen it all before. The problem with HTTPS+"client auth" is that > clients don't know which page is going to require a client cert - so they > default to making a standard HTTPS call first, get the SSL-error back saying > they need

Re: Checking client certificate

I have already tested them and the same errors occures. --- - Original Message - DATE: Thu, 3 Jul 2003 01:08:17 From: Ng Pheng Siong <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Cc: >On Tue, Jul 01, 2003 at 08:20:40AM +0100, Marius Cabas wrote: >> I'm trying to check the client c

Re: (No Subject)

On Tue, Jul 01, 2003 at 03:19:14PM +0100, Marius Cabas wrote: > I want to check the client certificate from an SLL server. In the > callback function passed to SSL_CTX_set_verify() I'm getting the error > 18: X509_V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT (self signed certificate). I > suppose the certific