l-fips-test-1.2.0.tar.gz , build it with ./config fips
> option to generate fipsld, fipscanister,..etc and downloaded the latest
> openssl-0.9.8-fips-test-SNAP-20080813.tar.gz to build the fips capable
> openssl libcrypto and libssl . Are these steps right ..? which I followed
>
Fred Picher:
> For export regulations compliance I must dumb down OpenSSL to use
> only DES. And that's only DES, no 3DES ! So I got it down to:
Are you sure you aren't trying to comply with ancient regulations that no
longer apply? It's been years since anyone I know of has had to dumb thei
, fipscanister,..etc and downloaded the latest
openssl-0.9.8-fips-test-SNAP-20080813.tar.gz to build the fips capable openssl
libcrypto and libssl . Are these steps right ..? which I followed through the
README.
2) I tried checking the PEM_ASN1_write_bio and even the PEM_read_bio which also
Hello,
For export regulations compliance I must dumb down OpenSSL to use
only DES. And that's only DES, no 3DES ! So I got it down to:
openssl ciphers -v
EDH-DSS-DES-CBC3-SHA
SSLv3 Kx=DH
Au=DSS
Enc=3DES(168)
Mac=SHA1
EDH-DSS-DES-CBC-SHA
SSLv3 Kx=DH
Au=D
Dear All,
I tried to connect to stream server through using https (using open
ssl).But I got response from server nothing means only zero content length
of data and headers.
Let me know why server was not sending data. Is any problem related to ssl
due to delay time out happen towards server side
Hi Tim,
after understanding what happens I found and understand FAQ. But if it is
part of the FAQ why not putting a hint on the relevant man pages, Maybe
after doing this this item is no FAQ any more ;).
Ciao
Matthias
> Matthias Barmeier wrote:
>> Hi,
>>
>> ok, sorry for not understanding what
Dr. Stephen Henson wrote:
On Mon, Aug 11, 2008, delcour.pierre wrote:
Hello everyone,
I try to add a certificate in a CRL. To do that, i use a X509* cert, a
X509_CRL* crl with this algorithm :
X509_REVOKED *r = NULL;
r = X509_REVOKED_new();
r->serialNumber = X509_get_serialNumber(cert);
Thanks, I will try to figure out as you suggested.
Rafi
On 8/13/08, Sergio <[EMAIL PROTECTED]> wrote:
> Rafiqul Ahsan escribió:
>
> > Found a previous postings like this where Alan Dekok answered that
> > FreeRadius use SSL from openssl, and if SSL supports any advanced
> > algorithm FreeRadius s
On Mon, Aug 11, 2008, delcour.pierre wrote:
> Hello everyone,
>
> I try to add a certificate in a CRL. To do that, i use a X509* cert, a
> X509_CRL* crl with this algorithm :
>
> X509_REVOKED *r = NULL;
> r = X509_REVOKED_new();
> r->serialNumber = X509_get_serialNumber(cert);
> if(!crl->crl->rev
On Tue, Aug 12, 2008, Justin A wrote:
> Hi,
>
> When fips mode enabled I am running into issue with this call in my code
>
> 1)
> Issue:-
> -
> PEM_write_bio_RSAPrivateKey(priv_bp, key, EVP_des_ede3_cbc(), NULL, NULL,
> some_cb, NULL)
>
> When I checked the code which in t
Most likely, it probably has something to do with
http://www.openssl.org/support/faq.html#PROG2 , probably a lack of
CRYPTO_malloc_init().
-Kyle H
On Tue, Aug 12, 2008 at 12:17 PM, Chris Hatko <[EMAIL PROTECTED]> wrote:
> I've got a ActiveX control which uses several different dll's
> (LIBEAY32.d
Rafiqul Ahsan escribió:
Found a previous postings like this where Alan Dekok answered that
FreeRadius use SSL from openssl, and if SSL supports any advanced
algorithm FreeRadius should support it (I actually added a patch to
FreeRadius to make sure this supports all digests). I am currently
tryin
Thanks a lot David for the detailed explanation. I am analyzing our code
now. our functions is shown below. pls check if you can quickly find any
mistake there.
int testParseKeystore
(
const char *keyStoreFilePath,
const char *password,
EVP_PKEY **priKey,
X
Hi,
When fips mode enabled I am running into issue with this call in my code
1)
Issue:-
-
PEM_write_bio_RSAPrivateKey(priv_bp, key, EVP_des_ede3_cbc(), NULL, NULL,
some_cb, NULL)
When I checked the code which in turns points to
int
PEM_ASN1_write_bio(i2d_of_void *i2d, co
14 matches
Mail list logo