+1 for working *sed* into everyday conversation.
Dustin
On May 29, 2014 5:49 PM, "Jeffrey Walton" wrote:
> On Thu, May 29, 2014 at 3:26 PM, Jeffrey Walton
> wrote:
> >> but let's say it's the government of North
> >> Korea... Even if no strings, it would damage the perception people have
> of
>
> From: owner-openssl-us...@openssl.org On Behalf Of Jakob Bohm
> Sent: Wednesday, May 28, 2014 13:04
> On 5/25/2014 2:22 PM, Hanno Böck wrote:
> > Some clients (e.g. all common browsers) do fallbacks that in fact
> > can invalidate all improvements of later tls versions.
> >
> > These fallbacks
> From: owner-openssl-us...@openssl.org On Behalf Of Sven Reissmann
> Sent: Thursday, May 29, 2014 12:24
> What I did was:
>
> - I generated a newRootCA (new keypair, selfsigned certificate).
>
> - I generated another selfsigned certificate (bridgeCert) from the
> newRootCA's private key. From
On Thu, May 29, 2014 at 3:26 PM, Jeffrey Walton wrote:
>> but let's say it's the government of North
>> Korea... Even if no strings, it would damage the perception people have of
>> OpenSSL just being associated with that entity. So, just be mindful of
>> people's perceptions when accepting anythi
On Thu, May 29, 2014 at 4:51 PM, Frans de Boer wrote:
> ...
> Ok, I accept the above apologies as I just want to express my worries. Yes,
> it was cynical - I used one line from Huwai, which triggered my response.
> The initial comment from the OpenSSL spokesperson about the "focused"
> interest o
On 05/29/2014 09:52 PM, Jeremy Gray wrote:
government of North Korea... Even if no strings, it would damage the
perception people have of OpenSSL just being associated with that
entity. So, just be mindful of people's perceptions when accepting
anything.
+1.
Dennis Rodman goes
> Dennis Rodman goes to North Korea and says its just basketball, not
> political. Everyone except him knows he was used. OpenSSL cannot
> metaphorically "go to North Korea" without damage to its brand -- especially
> now that real financial support is forthcoming.
Its a slippery slope. You can't w
On Thu, May 29, 2014 at 12:53:06PM -0700, David Li wrote:
> Say, I have a servercert.pem, serverkey.pem and cacert.pem. When
> using SSL_CTX_use_certificate_chain_file() to load a cert file as the
> second argument, I will have to construct the file like this:
>
> cat servercert.pem serverkey.pe
A big Applause, Congrats
On Thu, May 29, 2014 at 11:36 PM, Mark H. Wood wrote:
> \applause all around!
>
> --
> Mark H. Wood, Lead System Programmer mw...@iupui.edu
> Machines should not be friendly. Machines should be obedient.
>
--
Warm Regards
--Dev
OpenPegasus Developer
"I'm one of
>
> government of North Korea... Even if no strings, it would damage the
> perception people have of OpenSSL just being associated with that entity.
> So, just be mindful of people's perceptions when accepting anything.
+1.
Dennis Rodman goes to North Korea and says its just basketball, not
poli
Hi,
Say, I have a servercert.pem, serverkey.pem and cacert.pem. When
using SSL_CTX_use_certificate_chain_file() to load a cert file as the
second argument, I will have to construct the file like this:
cat servercert.pem serverkey.pem cacert.pem > server.pem
and use server.pem in the API.
My qu
> but let's say it's the government of North
> Korea... Even if no strings, it would damage the perception people have of
> OpenSSL just being associated with that entity. So, just be mindful of
> people's perceptions when accepting anything.
That cuts both ways... Privacy is a human right in many
Hi,
> Then again, many developers do have a social handicap - that's why
> they are so good a developer.
that sweeping generalisation is probably worse than calling one person
a troll! ;-)
alan
__
OpenSSL Project
Good on you for sending that apology. I thought it was inappropriate to label
that commenter to dismiss his point of view. I also think Steve addressed his
cynical comments well, the part about taking money from anyone as long as it
comes with no strings attached is wrong, IMHO. That can be eas
\applause all around!
--
Mark H. Wood, Lead System Programmer mw...@iupui.edu
Machines should not be friendly. Machines should be obedient.
signature.asc
Description: Digital signature
Frans,
I apologize. My posting was a mistake. (I meant to cancel my posting, but
instead my fingers hit control-return rather than escape.)
I am sorry that, on the basis of one posting, I called you a troll, or implied
that you had anything other than concern and interest in seeing the best
p
hello,
i am working with windows ce 6.5. i am built WCECOMPAT and got 2 library
files and then i compiled openSSL for that and i am successfully compiled it
using target CPU ARMV4.
but i do not know how to use library files in my project so please help me
out.
Thank you
--
View this message i
I am pleased to announce a continuing sponsorship by the Milton Security
Group (https://miltonsecurity.com/company/). Their CEO, Jim McMurry,
indicated that while they are still a small firm, "We
use OpenSSL in our product and we are now at a point where we can
start giving back".
Sustainable fund
Hi,
Dave, thank you very much for your suggestions. This sounds like the
solution I'm looking for. I've set up a completely new PKI to test this,
but I'm still having one problem.
What I did was:
- I generated a newRootCA (new keypair, selfsigned certificate).
- I generated another selfsigned c
Wow you guys are rocking kudos
-- #contagious
-Original Message-
From: owner-openssl-us...@openssl.org
[mailto:owner-openssl-us...@openssl.org] On Behalf Of Steve Marquess
Sent: Thursday, May 29, 2014 11:40 AM
To: openssl-users@openssl.org
Subject: Linux Foundation Core Infrastructure Ini
On 05/29/2014 11:39 AM, Steve Marquess wrote:
> I am very pleased to announce that the Linux Foundation Core
> Infrastructure Initiative (CII),
> http://www.linuxfoundation.org/programs/core-infrastructure-initiative,
> has extended full time fellowships to Stephen Henson and Andy
> Polykov ...
Oo
I am very pleased to announce that the Linux Foundation Core
Infrastructure Initiative (CII),
http://www.linuxfoundation.org/programs/core-infrastructure-initiative,
has extended full time fellowships to Stephen Henson and Andy Polykov of
the OpenSSL project. Andy will need to disengage from signif
Hi,
I am planning to upgrade open SSL in my operating system(RHEL). I have
applications running in the system, i.e. Tomcat web application, Web server,
Message broker etc. Do i need to check for compatible issues before i go
with the upgrade. Thanks!
--
View this message in context:
http://ope
On 28/05/14 15:13, Salz, Rich wrote:
The signature on a certificate is made using the key of its parent CA. So that
means that the parent CA uses an RSA key and not an ECDSA key.
I thought the spec says the cert should be signed with the same key type. Not
sure which spec, sadly. :( And tha
On 05/29/2014 02:52 AM, Salz, Rich wrote:
Please don't feed the troll
--
Principal Security Engineer
Akamai Technologies, Cambridge, MA
IM: rs...@jabber.me; Twitter: RichSalz
Being cynical is equal to being a troll?
The initial remarks made by an openssl representative was that that most
con
Hi All,
We have a product that has 2 network interfaces i.e. wired and wireless.
Both interfaces uses separate OpenSSL library. However FIPS validated
OpenSSL crypto module is common for both interfaces as shown below.
FIPS validated openSSL
26 matches
Mail list logo