RE: SSL - Weak Encryption Test

2011-03-01 Thread Nouefel
Hi Openssl version - OpenSSL 0.9.8l 5 Nov 2009 Now regarding the commands and their results : openssl s_client -connect HOSTNAME:443 -cipher LOW:EXP connect: Connection timed out connect:errno=110 openssl s_client -connect HOSTNAME:8000 -cipher LOW:EXP CONNECTED(0003) write:errno=104

Problem to encode a ASN.1 field in SAN of a CSR

2011-03-01 Thread David CARELLA
Hi, I try to put a field MS GUID in a SubjectAltName (SAN) extension of a CSR. This field MS GUID must contain 16 hexadecimal-octets. I used OpenSSL 1.0.0d compiled on GNU/Linux (Kubuntu). And I try with OpenSSL 0.9.8g (issued by the distribution)... and I have the same error. My test.

Compiling and installing

2011-03-01 Thread HORSTMAN, MARK A (ATTSI)
I'd like to compile OpenSSL 1.0.0d so that, by default, it uses a directory for --openssldir to which I do not have write access but gets installed in a directory which I do have write access: ./config --openssldir=/usr/share/ssl --prefix=${HOME}/openssl Compiling and testing works

Re: Problem to encode a ASN.1 field in SAN of a CSR

2011-03-01 Thread Dr. Stephen Henson
On Tue, Mar 01, 2011, David CARELLA wrote: File test-req.cnf: [ req ] default_md = sha256 req_extensions = ext_server [ ext_server ] keyUsage= critical, digitalSignature, keyEncipherment extendedKeyUsage= serverAuth #- MS GUID (OID:

SSL_read( ) = segmentation fault

2011-03-01 Thread ikuzar
Hello, I develop a secure stack. This stack is between TCP and an application. The appli call my stack's functions ( my_connect( ), my_listen( ), etc. ). I have got segmentation fault after launching the the program. SERVER SIDE : my_recv( ) is like this : int my_recv(my_cn sd, char* buf,

Re: Problem to encode a ASN.1 field in SAN of a CSR

2011-03-01 Thread David CARELLA
Thank you. Note: the content on the help page is wrong. The correct content would be: - [subject_alt_section] URI=ldap://somehost.com/CN=foo,OU=bar - Not: - [subject_alt_section] subjectAltName=URI:ldap://somehost.com/CN=foo,OU=bar - Best

RE: SSL - Weak Encryption Test

2011-03-01 Thread Dave Thompson
From: owner-openssl-us...@openssl.org On Behalf Of Nouefel Sent: Monday, 28 February, 2011 19:10 Openssl version - OpenSSL 0.9.8l 5 Nov 2009 Now regarding the commands and their results : openssl s_client -connect HOSTNAME:443 -cipher LOW:EXP connect: Connection timed out

Re: Base64 Encoding and Decoding error

2011-03-01 Thread Vinay Kumar L
Hi Jan, Thanks for your reply, but OpenSSL Base64 decoding api returns NULL on passing Base64 encoded data. The code snippet is as follows: int main(int argc, char **argv) { char *output = unbase64(dGVzdGVuY29kaW5nCg==, strlen(dGVzdGVuY29kaW5nCg==)); printf(Unbase64: %s\n,