On 12 July 2015 at 03:31, Salz, Rich wrote:
> I'd be concerned about doing that. While this one seemed pretty rare --
> only folks running a release less than 30 days old in production -- as a
> general rule, it's impossible to tell. For example, we THINK that PSK
> isn't used much, but we have
Hi,
Sometimes, during the processing of an HTTP cert response from the Symantec PKI
Manager SCEP server, our application encounters an error condition while
validating the certs attributes. The error that we see is "Transaction not
permitted or supported".
It appears that this error is detect
On 10/07/2015 23:03, Jeffrey Walton wrote:
During certificate verification, OpenSSL (starting from version 1.0.1n and
1.0.2b) will attempt to find an alternative certificate chain if the first
attempt to build such a chain fails. An error in the implementation of this
logic can mean that an attac
>>> In fact, I thought that was the reason we all
>>> had to wait ages before this long standing shortcoming
>>> was fixed.
>>
>> It almost sound like you are complaining you did not have to wait ages :)
>
> It's the inconsistency of first insisting this cannot go
> into a patch and then pushing ou
On 12/07/2015 22:01, Thomas Herchek wrote:
Hi,
Sometimes, during the processing of an HTTP cert response from the
Symantec PKI Manager SCEP server, our application encounters an error
condition while validating the certs attributes. The error that we
see is "Transaction not permitted or supp
Hi all,
I am programmatically generating the self signed certificate and need to
specify the "Not Before" and "Not After" date,
Wanted to understand what all formats are acceptable by this API ?
Also, similarly while using API , what exactly is the time format
expected by X509_cmp_time(X509_ge
