On Sat, Mar 21, 2015 at 06:58:38AM +, Viktor Dukhovni wrote:
Don't check that the curve appears in the list of acceptable curves for the
peer, if they didn't send us such a list (for example this will always be
the case in SSL3)
Are you sure that's a bug. I recall a recent
On Fri, Mar 20, 2015 at 03:51:17PM +, Matt Caswell wrote:
I am trying to use ECDH-RSA-AES256-SHA with ssl3 with s_client and
s_server on
the master branch. (cloned at commit
f7683aaf36341dc65672ac2ccdbfd4a232e3626d) and then retested with a more
recent clone: (commit
On 03/17/15 22:29, Salz, Rich wrote:
Ok, so TLS does not handle this.
The current draft of the TLS 1.3 specification includes a field to pad every
data record.
___
openssl-users mailing list
To unsubscribe:
At the moment OpenSSL FIPS validation supports ANSI X9.31 with AES128
for RNG, however it will be outdated in 2015.
Another alternative RNG in OpenSSL FIPS is SP800-90 DRBG, however the
new requirement is to use DRBG per SP800-90A.
Are the DRBGs in SP800-90/OpenSSL-FIPS-2.0.9 the same as
Hello,
I'd like to set individual v3 extensions (in particular subjectAltname)
when signing certificate requests (CSR) and use CA defaults for the
other extensions.
Is it possible to achieve this without passing the complete list of
extensions for the certificate via -config or -extfile ?
Sorry, wrong mailing list!
On 22/03/2015 10:47 AM, Geoff Swan wrote:
I had to duplicate an LMDB database for replication recently, and used
mdb_copy to do so.
One server is using the original data.mdb database (which is sparse) and
the other is using the mdb_copy non-sparse data.mdb file.
I had to duplicate an LMDB database for replication recently, and used
mdb_copy to do so.
One server is using the original data.mdb database (which is sparse) and
the other is using the mdb_copy non-sparse data.mdb file.
The two servers are identical (hardware, OS, software and
configuration).
Hi,
Can anyone tell me starting point or location of main method in openssl
source code which starts openssl command line toolkit ?
Have a good day !
Thanks,
Niraj.
___
openssl-users mailing list
To unsubscribe: