Hello,
I have the following problem
openssl req -config client.cnf -new -key ClientCerts/stuart.key -out
ClientCerts/stuart.csr
Enter pass phrase for ClientCerts/stuart.key:
problems making Certificate Request
30488:error:0D07A097:asn1 encoding
routines:ASN1_mbstring_ncopy:string too
Steve,
Thanks for the help. I finally got this working and figured I'd reply here
in case this might help others.
I found a Java implementation of EVP_BytesToKey() in the JRuby code and
borrowed it. I ran the password through it and the key and IV I got back
didn't mach what openssl enc -d
Hello,
I have googled around and have not been able to find a suitable answer for
an error received when make errors is attempted when trying to build and
install openssl-0.9.8d. Sorry if I am being to newbie-ish.
First I use config like this:
env CONFIG_SHELL=/bin/sh /bin/sh
./config
Found the problem
There was prompt=no in the cnf file.
Dont see why that should complain though.
On 6 Dec 2006, at 14:41, Stuart Gall wrote:
Hello,
I have the following problem
openssl req -config client.cnf -new -key ClientCerts/stuart.key -
out ClientCerts/stuart.csr
Enter pass phrase
On Wed, Dec 06, 2006, Stuart Gall wrote:
Found the problem
There was prompt=no in the cnf file.
Dont see why that should complain though.
The reason for that is that the DN section needs to be formatted appropriately
if prompt=no is set. That uses the more natural style of:
dn_component
I don't understand this argument at all. The two questions you seem to
think are being confused are the *same* question.I don't think so. When I
type in https://www.amazon.com;, what I want to know is - do I have a
secure connection to Amazon?This is an authentication question. A secure
On Wed, Dec 06, 2006 at 07:16:32PM +, [EMAIL PROTECTED] wrote:
[ Authentication vs. Authorization ]
Yes, the real issue is that encryption without authentication does
not necessarily provide confidentiality, the party on the other end of
the encrypted connection could be the same attacker
A secure connection to an unauthenticated source is of
no value because the unauthenticated source could be
the one person who the connection is supposed to be
secured from. If there's nobody the connection is
supposed to be secured from, why would you care
that the connection is