If you type about:config into the address bar in Firefox (I am using
2.0.0.13) and type ecdsa into the filter field, Firefox will display the
ECC ciphers.
Victor Duchovni wrote:
Cool! Which releases of Firefox support ECC?
--
Leonard F. Elia III, CISSP 757.864.5009
Sr. System
When I made OpenSSL-Fips for win32 with MinGW, I did not have any luck
with gcc-3.4.5; I just looked and mine is gcc-3.4.3 and that built
OpenSSL-Fips-1.1.1 just fine, all tests passed. I have not tried
building 1.1.2 yet, however.
The build process I followed:
You untar OpenSSL-Fips-x.x.x
On Tue, Sep 18, 2007 at 01:46:42PM -0500, Murphy, David F wrote:
Exchange 2007 certificates and the autodiscovery functions:
According to this Microsoft article:
http://msexchangeteam.com/archive/2007/07/02/445698.aspx
http://msexchangeteam.com/archive/2007/07/02/445698.aspx a
certificate
My Apologies. I was forwarding this to another email for archiving and
I was sloppy with addressing before I hit send.
Back to your program already in progress
Lee
Elia, Leonard F. wrote:
On Tue, Sep 18, 2007 at 01:46:42PM -0500, Murphy, David F wrote:
Exchange 2007 certificates
Radhika Hebbar wrote:
Hi,
I’m writing an application on Solaris10AMD64 using 0.9.7d version of
OpenSSL (comes along with the OS). In my application,
AES_set_encrypt_key() is returning -2 for 256 bit key length. I also
found that it works only for 128 bit key length. I came to know that
Greetings,
While a patch was issued, you cannot apply it and maintain FIPS
certification. Re-read that sentence. Perhaps your management doesn't
understand this. There is NO APPROVED patch that keeps OpenSSL's FIPS
certification. Sorry.
L.
[EMAIL PROTECTED] wrote:
I am tasked with
My own Win32 build procedure using MinGW went like this:
tar xvf openssl-fips-1.1.1.tar
cd openssl-fips-1.1.1
./config fips
make
make test
make install
THEN
tar xvf openssl-0.9.7m.tar
cd openssl-0.9.7m
./config fips --with-fipslibdir=/usr/local/ssl/lib
make
make test (do NOT skip the tests)
Thanks Steve, that solves our problem.
Dr. Stephen Henson wrote:
Depends on the command used to encrypt/decrypt. If it is the default password
derivation in the 'enc' command then note that this uses MD5 for key
derivation. For compatibility OpenSSL uses MD5 in non-FIPS mode and SHA1 in
FIPS
I have a question about OpenSSL FIPS mode.
I created openssl using the FIPS module, openssl 0.9.7m, and mingw on
windows. It works cross platform with openssl FIPS created on Linux; my
Solaris 10 version has been shelved for now.
I can encrypt and decrypt out of FIPS mode.
I cannot decrypt
The Solaris version fails on test_sha. I thought perhaps this was a
problem with the SUN toolchain, so I rebuilt it using gcc 3.4.6 but it
still fails:
make[1]: *** [test_sha] Error 1
Items were built as:
tar xvf openssl-fips-1.1.1.tar
cd openssl-fips-1.1.1
./config fips
routines:FIPS_selftest_aes:selftest
failed:fips_aes_selftest.c:92:
2. Automatic power-up self test...FAILED!
LE
Dr. Stephen Henson wrote:
On Tue, Jul 17, 2007, Elia, Leonard F. wrote:
The Solaris version fails on test_sha. I thought perhaps this was a
problem with the SUN toolchain, so I rebuilt it using gcc 3.4.6
, Leonard F. wrote:
Thank you for your input.
I rebuilt with nothing but config fips; the test you requested fails
with this:
FIPS-mode test application
1. Non-Approved cryptographic operation test...
a. Included algorithm (D-H)...successful
6385:error:2A068065:FIPS
Hello All,
I built OpenSSL with the FIPS module, and after a few issues built it
successfully on Solaris 10 (using Sun cc) and on Windows using MinGW.
Each works fine on its own platform, but if I encrypt on Solaris 10, I
get decryption errors on Windows, and vice versa.
Any ideas?
Leonard
:|
|0.9.7m:
C:\test\ssl\bin\openssl enc -aes128 -d -in test98s.odt.aes -out test98s_
enter aes-128-cbc decryption password:
bad decrypt
828:error:06065064:digital envelope routines:EVP_DecryptFinal:bad
decrypt:evp_enc.c:509:|
|Leonard Elia
NASA LaRC
|
|
|
|
|
Thomas J. Hruska wrote:
Elia, Leonard F
14 matches
Mail list logo
