Problem using ciphes - are they supported?

Hi, Is it possible that these ciphers are currently not supported within Openssl 0.9.8? EDH-DSS-CBC-SHA DH-DSS-AES128-SHA DH-DSS-AES256-SHA DH-RSA-AES128-SHA DH-RSA-AES256-SHA If they are supported, I would appreciate some help in figuring out why I cannot use them. I am using an RSA self signed

Microsoft CryptoAPI and OpenSSL

Hi, I have created a plugin for OpenSSL which reads a certificate through Microsoft's CryptoAPI. The problem is that the private key is not returned and I just have a handle to it. During the handshake with a Java JSSE client, I get an error of BAD_MAC. If the certificate was stored as a PEM

Re: Getting a copy of CA certificate

On Sun, 4 Dec 2005 01:55:39 +0100, "Dr. Stephen Henson" <[EMAIL PROTECTED]> said: > Its installed in MSIE so you can export it from there if you want. Thanks. I don't have IE, but I did get it out of the Apple Keychain Access application. -- http://www.fastmail.fm - I mean, what is it about a de

Re: Getting a copy of CA certificate

On Sat, Dec 03, 2005, Otto Maddox wrote: > I need to install into the OpenSSL framework the CA certificate which my > mail provider uses to sign its server certificates. The CA certificate I > need has this: > > /C=US/O=Equifax Secure Inc./CN=Equifax Secure Global eBusiness CA-1 > > How do I get

Re: steps to use a dynamic engine from an application

On December 1, 2005 01:20 pm, Anil Gunturu wrote: > Thank you for your response. I have couple of more questions: > - If I use ENGINE_by_id("athena"), what should be the name and path > of engine implementation. It depends on how the source was configured/built. Typically it will be within an '

Getting a copy of CA certificate

I need to install into the OpenSSL framework the CA certificate which my mail provider uses to sign its server certificates. The CA certificate I need has this: /C=US/O=Equifax Secure Inc./CN=Equifax Secure Global eBusiness CA-1 How do I get a copy of this certificate so that connections the mail

Re: RE: Ignorant of SSL: I have a dumb question

I am communicating with PayPal via an SSL link.  They furnished the certificate for me to put on my server, then I had to run a bunch of command line stuff (Don't know what for). lwoods Sent from the OpenSSL - User forum at Nabble.com: Re: RE: Ignorant of SSL: I have a dumb question

RE: Ignorant of SSL: I have a dumb question

> I have an application that is wanting me to add an OpenSSL certificate > to my server, but the application will be communicating server-to-server > over SSL. Therefore, the browser "problem" won't be one, right? This is actually a very complex question, and anyone who answers it witho

Re: Ignorant of SSL: I have a dumb question

Thanks, much. I have an application that is wanting me to add an OpenSSL certificate to my server, but the application will be communicating server-to-server over SSL.  Therefore, the browser "problem" won't be one, right? lwoods Sent from the OpenSSL - User forum at Nabble.com: Re: Ignorant of

Re: [EMAIL PROTECTED]: Using ECDH with OpenSSL]

Hines, Philip D. wrote: Using the C API. I am working on a plugin for GAIM which uses ECDH for establishing encrypted sessions. I think I figured out most of it...right now I can make it work locally, but the public and private keys are in structures with many pointers and I am having trouble

Re: Ignorant of SSL: I have a dumb question

lwoods (sent by Nabble.com) wrote: I don't understand why anyone would spend the money for Verisign or Thawte for a certificate if you could use OpenSSL. Can you explain...or point me to some white paper, etc. that would explain this for me.