-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Yuliya Shulman
Sent: Wednesday, July 16, 2008 9:29 AM
To: openssl-users@openssl.org
Subject: RE: Prime number generation on FreeBSD-sparc64
Thank you so much for providing the article and the flags!
It is fine to use OpenSSL as long as the instructions IN that license are
followed, note:
...All advertising materials mentioning features ...
That is pretty broad. Basically, if your commercial application has a
spec sheet or other sheet that is distributed as part of an advertisement
of the
I read on a website (http://developer.mozilla.org/en/docs/NSS_FAQ) that
OpenSSL does not support the PKCS #11 chip by default. I'm aware there is a
patch for this, but I'm not sure if it's already installed. I'm currently
working on an OpenSPARC. By typing openssl version -a in the terminal, I
On Thu, 17 Jul 2008, sadronmeldir wrote:
Is there a way to determine if the patch is installed and if the backend is
set up? Any help would be greatly appreciated.
Solaris 10 and OpenSolaris are already shipped with the PKCS#11
engine. Run this to see that:
openssl engine -vvv
Hello,
I'm currently trying to configure some pre-existing code using EVP signing
to offload work to the PKCS #11 engine on an OpenSPARC. Since I'm new to
this, I tried initializing the PKCS11 engine two different ways which can be
triggered by command line argument. By default, the program will
Yes, I understand the list of prime numbers is known; unfortunately, I
can only implement the solutions my management agrees with. This code
path is used for login authentication and has been used for a while, so
I guess everybody thinks it's OK to use it.
Unfortunately, I also spoke too soon. I
On Thu, Jul 17, 2008 at 09:27:26AM -0500, Yuliya Shulman wrote:
Yes, I understand the list of prime numbers is known; unfortunately, I
can only implement the solutions my management agrees with. This code
path is used for login authentication and has been used for a while, so
I guess
I'm not using OpenSSL to generate the list of primes. OpenSSl is using
it in the following path:
RSA_generate_key() - in rsa_depr.c
RSA_generate_key_ex() in rsa_gen.c
rsa_builtin_keygen() in rsa_gen.c
BN_generate_prime_ex() in prime.c
BN_is_prime_fasttest_ex() in bn_prime.c
Algorithms of finding
On Thu, Jul 17, 2008 at 09:48:51AM -0500, Yuliya Shulman wrote:
I'm not using OpenSSL to generate the list of primes. OpenSSl is using
it in the following path:
RSA_generate_key() - in rsa_depr.c
RSA_generate_key_ex() in rsa_gen.c
rsa_builtin_keygen() in rsa_gen.c
BN_generate_prime_ex()
On July 17, 2008 10:48:51 am Yuliya Shulman wrote:
I'm not using OpenSSL to generate the list of primes. OpenSSl is using
it in the following path:
RSA_generate_key() - in rsa_depr.c
RSA_generate_key_ex() in rsa_gen.c
rsa_builtin_keygen() in rsa_gen.c
BN_generate_prime_ex() in prime.c
Thats kind of difficult because we are making a retail video game that uses
libcurl to talk http for one of the minor features the game has.
We've already had commercials on tv and tons of advertisements go out.
It seems like pretty tough guidelines to have all advertisement materials
say this.
[EMAIL PROTECTED] wrote on 07/16/2008 10:08:31 AM:
2) using static builds has a benefit: you know exactly what your
application is going to get SSL-wise: you will be sure it is installed
on the target system because you brought it along. The drawback is
that you have to provide your own
Thank you very much. I have enabled crl verification in the openvpn and now
It works
Patrick Patterson-3 wrote:
On July 16, 2008 09:32:41 am albertlb wrote:
Hello
I am using a debian pc with openssl and openvpn. The problem is I have
revoked a user certificate but the user still has
RSA_generate_key() - in rsa_depr.c
RSA_generate_key_ex() in rsa_gen.c
rsa_builtin_keygen() in rsa_gen.c
BN_generate_prime_ex() in prime.c
BN_is_prime_fasttest_ex() in bn_prime.c
That's probably exactly what you should be doing.
I believe it has worked in our code for years;
Hi,
I'm developing a client in for a protocol where the public servers
that use SSL typically use self-signed certificates.
In order to make the best of a bad situation, I would like to
implement server key caching, similar to the way that SSH is
typically used (that is, on the first
Hi Alan,
If you re-read below you will see it says this:
If...advertisement of the product... that lists a line item of a
feature that your software has which is dependent on use of OpenSSL,
you must follow the...
So if your advertisement does not list any encryption or other
features provided
Oops, I totally missed that.
Thanks for clearing that up, I see now in the license where it mentions that
caevat about advertisement materials.
Thank you so much for your help Chris and Ted!
On Thu, Jul 17, 2008 at 8:49 AM, Chris Clark [EMAIL PROTECTED]
wrote:
Hi Alan,
If you re-read below
On Wednesday 16 July 2008 14:56:26 Kenneth Goldman wrote:
[EMAIL PROTECTED] wrote on 07/16/2008 10:08:31 AM:
2) using static builds has a benefit: you know exactly what your
application is going to get SSL-wise: you will be sure it is installed
on the target system because you brought it
Geoff Thorpe [EMAIL PROTECTED] writes:
[...]
Has this ever been (in recent history) an issue within a given
release branch? Ie. has 0.9.8(n+1) ever broken apps that were
running ok against 0.9.8n? 0.9.8x is of course not backwards
compatible with 0.9.7y, and 0.9.9 will not be backwards
On Thursday 17 July 2008 12:26:33 Bruce Stephens wrote:
Geoff Thorpe [EMAIL PROTECTED] writes:
[...]
Has this ever been (in recent history) an issue within a given
release branch? Ie. has 0.9.8(n+1) ever broken apps that were
running ok against 0.9.8n? 0.9.8x is of course not backwards
Geoff Thorpe [EMAIL PROTECTED] writes:
[...]
But in fact, the original question was about binary compatibility
Sure, and I've no reason to believe binary compatibility has been
broken in 0.9.8. (Though it's something I've never really cared
about.)
[...]
For educational purposes, I want to use openssl to create an RSA key
with prime numbers I provide.
Is this possible with an openssl command, or do I have to adapt the source code?
__
OpenSSL Project
Hello,
My company developed application using OpenSSL libraries to establish
SSL/TLS connections.
Our customers would like to have a reasonable way of updating user's
certificate (that is about to expire) without bringing the application
down and loosing all the existing SSL/TLS connections.
Hello,
[EMAIL PROTECTED] wrote on 07/17/2008 10:17:14 PM:
For educational purposes, I want to use openssl to create an RSA key
with prime numbers I provide.
Is this possible with an openssl command, or do I have to adapt the
source code?
From command line (openssl executable) this is not
Didier Stevens пишет:
For educational purposes, I want to use openssl to create an RSA key
with prime numbers I provide.
Is this possible with an openssl command, or do I have to adapt the source code?
You can write a little program in C using OpenSSL library.
You should know p, q and e
25 matches
Mail list logo