No easy to play with CAroot and extensions.
I had to add the option
copy_extensions = copy
to [ CA_default ] to force the certificate generation to include
extensions from the
the certificate request.
And yes, after importing the CA, the browsers dont complains anymore
when the server
certificate
Hi there,
I am fairly new in using OpenSSL, so I hope you guys can teach me how to use
it.
OK. Now I have a question about OpenSSL. Is there anyone of you know whether
OpenSSL supports X509 LogoType Extension? As I am trying to put a logo into
the certificates.
What about Keytool from Sun?
Than
Fadil Sutomo schrieb:
> OK. Now I have a question about OpenSSL. Is there anyone of you know
> whether OpenSSL supports X509 LogoType Extension? As I am trying to put
> a logo into the certificates.
>From a quick glance at RFC3709, the LogoType extension looks to me like a
>normal
X.509 extension
Hello,
is there a way to make the SSL handshake verbose, when using the openssl API?
Thanks.
phiroc
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-u
Hello,
is there a way to ascertain that the data I am BIO-putting to an HTTPS server
are actually encrypted, apart from watching the data flows from my openssl
application to the server, using tcpdump?
Thanks.
Phiroc
__
OpenSSL
Hello,
is there a way to make the SSL handshake verbose, when using the openssl API?
Yes. Rebuild OpenSSL library with -DKSSL_DEBUG. I dont remember right
but you can do:
./configure -DKSSL_DEBUG. After that you can try openssl s_server and
s_client to see handshake messages.
Regards
收到
2007/6/18, [EMAIL PROTECTED] <[EMAIL PROTECTED]>:
Hello,
is there a way to ascertain that the data I am BIO-putting to an HTTPS
server
are actually encrypted, apart from watching the data flows from my openssl
application to the server, using tcpdump?
Thanks.
Phiroc
_
I am not sure but you can have some traces based on the return value
of the SSL calls. But if we think about the layered model, there can't
be any other way to know what u have written is actually encrypted or
not at layers below the SSL unless using some sniffers. At SSL layer,
you need to have e
On Mon, Jun 18, 2007, Fadil Sutomo wrote:
> Hi there,
>
> I am fairly new in using OpenSSL, so I hope you guys can teach me how to use
> it.
>
> OK. Now I have a question about OpenSSL. Is there anyone of you know whether
> OpenSSL supports X509 LogoType Extension? As I am trying to put a logo i
I have an issue and I'm not quite sure where OpenSSL exactly fits in to
it, but I figured I'd give it a shot and see if anybody had a similar
experience or any possible solutions.
I have an Apache module (mod_gsoap). Inside of the request handler I
call the Win32 API _beginthread (this function i
> Hello,
>
> is there a way to ascertain that the data I am BIO-putting to an
> HTTPS server
> are actually encrypted, apart from watching the data flows from my openssl
> application to the server, using tcpdump?
>
> Thanks.
My classic answer to this question is "what is your threat model". Or,
On Mon, Jun 18, 2007 at 01:44:52PM -0700, David Schwartz wrote:
>
> > Hello,
> >
> > is there a way to ascertain that the data I am BIO-putting to an
> > HTTPS server
> > are actually encrypted, apart from watching the data flows from my openssl
> > application to the server, using tcpdump?
> >
Hi,
I am new this security domain.
I would like to know is there version of openSSL FIPS 140-2 compliant.
Is FIPS 140-2 compliancy relevant to openSSL?
Thanks
Ramaniganth V.S.
Wipro : +91-80-28520408 Xtn: 82345
Nortel : 6-877-8976
Mobile: +91-9972227096
Loc.: T8-2F-C-102, EC-3, Wipro Tech.,
13 matches
Mail list logo