> Now, for the separation between SSL and "signing", do you know that
> there's a little bit of signing going on in SSL as well?
Yes, and that's my problem ... what I want to do is a small certification
authority which accepts connections from client applications through SSL ,
and signs certificat
On Wed, 3 Mar 2004 08:53:48 +0100
<[EMAIL PROTECTED]> wrote:
> p7b file from entrust is simply a pkcs7 signed envelope that contains only
> certificates. You can use openssl function in order to open envelope and
> extract the certificates.
Such as
openssl pkcs7 -in bla.p7b -inform der -print_c
tel dispas wrote:
Is this abug... ? or i am doing something wrong
see below
main()
{
int len;
unsigned char buf[10240],*p, *c;
srand(5);
RSA *rsa;
rsa=RSA_generate_key(1024,RSA_F4,callback,(char *)stdout);
//demo example
//rsa=RSA_generate_key(2048, 65537,
Hiya, I've been looking at renegotiations in mod_ssl - can anyone
confirm whether the following statement is true:
- it is only safe to call SSL_renegotiate and SSL_do_handshake to
instigate an SSL renegotiation if you know that the peer is in a state
where it must not be sending any data.
This s
I have some question :
1. Why RSA decrypt is slower than RSA encrypt and RSA sign
is slower than verify?
2. Why RSA encrypt as fast as verify and RSA decrypt as
fast as sign ?
3. Why ECDSA verify is slower than ECDSA sign ?
4. How to configure certificate that contains with ECDSA
not ECDH and si
I thought 5L had /dev/random. Are you running an older version of AIX?
On Mar 3, 2004, at 5:21 AM, todayhill wrote:
I am using IBM AIX System and DO NOT have /dev/random device.
I see I can use EGADS or EGD.But how can I use them?For example,my
code:
RSA_public_encrypt(fromLen, fromBuf, tmpBuf,
At 09:56 PM 3/2/2004 -0600, Jason writeth:
>
>> Now, I have to ask why you went to the trouble of doing all
>> of that when the Win32 OpenSSL Installation Project does that
>> and much more:
>
>excellent question. I actually had no idea that existed. (granted, I
>probably could have searched a
In message <[EMAIL PROTECTED]> on Thu, 04 Mar 2004 00:34:30 -0500, "Thomas J. Hruska"
<[EMAIL PROTECTED]> said:
shinelight> The link is on the OpenSSL.org site...just kind of tucked away:
shinelight>
shinelight> http://www.openssl.org/related/binaries.html
shinelight>
shinelight> A lot of peopl
