philipina wrote:
Hello,
I'm using an application (that I could recompile) which is using OpenSSL. My
problem is that for some computers I have an internet access but no DNS
server. In this case I configure the application to connect to
https://xxx.xxx.xxx.xxx (ip address) instead of
[EMAIL PROTECTED] wrote:
Hello,
We have security holes that need to be fixed on our Solaris 10
server. I have applied the Solaris 10 Recommended and Security
patch bundle that was updated on 09/02/08. One of the security holes
is will openssl. How do I upgrade it? Currently we are
Kaushal Shriyan wrote:
Hi Kiran
Now the verisign has given me the certificate as SSL.der format so can
you please provide me the working example using openssl to convert it
into SSL.pem
format taking my file SSL.der in question
Thanks again
Verisign has extensive information on how to
Maximo Migliari wrote:
Dear users,
I'm having problems installing openssl-0.9.8b on RedHat Enterprise,
kernel 2.6.9-11.ELsmp
When I type: ./config I get the following output:
--
# ./config
Operating system: i686-whatever-linux2
Configuring for linux-elf
Configuring
Scott Danforth wrote:
I've been trying to build openssl 9.8a on an opteron-based Solaris 10.
I've tried the 64 bit solaris x86 configuration, and various 32-bit
gcc configurations (the gcc-2 that comes on Sun's Software Companion
CD only has 32 bit libraries), but nothing works. I get
FYI,
I installed openssl v0.9.8 in three separate V20z with a single Opteron
244, running Solaris 10. All three boxes got Entire Distro installs
from CDs. I'm using Solaris 10 stock gcc.
# gcc -v
IReading specs from /usr/sfw/lib/gcc/i386-pc-solaris2.10/3.4.3/specs
Configured with:
GCC v3.4.3 is installed in /usr/sfw/bin with an Entire Distribution
install. You don't need to install the Companion CD.
BTW, Solaris 10 ships with openssl v0.9.7d and also installed in
/usr/sfw (and based on an Entire Distro install - no need for the
Companion CD).
My .02...
Andreas Almroth
I had no problems on three V20z (Opteron based). I did have problems on
a Dell Optiplex though. I'm using Sun's version of GCC which is newer
than the one in sunfreeware
The problem was regarding values.c, which is documented.
Fix it like this:
wget http://www.openssl.org/~appro/values.c
ksh
Subscribe to CERT... They also sent out a warning...
Fisk, Kevin wrote:
As you are probably aware, someone sent a security warning yesterday
regarding OpenSSL along with patches. I am reluctant to apply these types
of patches unless I am sure they are genuine. A patch can just as easily
What compiler are you using ?
Also, you probably want to use -fPIC for a config option.
Finally, note that Solaris 8 does not have a random/urandom device.
Search the archive for possible solutions (an old SUN package, or
ANDIRand)
My .02...
Satoshi Seto wrote:
Hellow. My name is
iling List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
--
------
Ricardo Stella O.I.T.
(609)896-5000 x7436 _suAve_ Rider
:
--
--
Ricardo Stella O.I.T.
(609)896-5000 x7436 _suAve_ Rider University
*** SPAM will not be tolerated ***
begin:vcard
adr;dom:;;;Lawrenceville;NJ;08648;
adr:;;2083 Lawreceville Road;Lawrenceville;NJ;08648;
n:Stella;Ricardo
tel
Dumb FAQ probably...
Now that the RSA patent expired, we can use compile without rsaref. But
should we still compile with 'no-idea' here in the US ?
TIA...
--
--
Ricardo Stella O.I.T.
(609
What solution is out there for the Intel port of Solaris 7 or 8 ?
Thanks...
--
--
Ricardo Stella O.I.T.
(609)896-5000 x7436 _suAve_ Rider University
*** SPAM
:30 ?0:06 /usr/lib/security/cryptorand
/dev/urandom
(Note that I tried switching /dev/random to /dev/urandom).
Any clues ???
--
--
Ricardo Stella O.I.T.
(609)896-5000 x7436
So with the CA's server's private key and cert (converted in pem format)
I would be able to use them as the CA for openssl, therefore issue certs
based on this ?
Thanks...
Dr S N Henson wrote:
Ricardo Stella wrote:
We were using Netscape Cert. Server 1.01. It was it's own root CA. We
It doesn't get any more clear than the instructions... RTM !!!
http://www.modssl.org/source/exp/mod_ssl/pkg.mod_ssl/INSTALL.Win32
Ramender Kishore wrote:
Hey all,
I am new to the field of open-ssl. So kindly help me out with my
installation problem. I am trying to install the
ortel Networks
Email:[EMAIL PROTECTED]
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
--
------
about how to intergret OpenSSL
into an application like Apache? I know that the general idea is tp
apply some patches to Apache code, add OpenSSL code to it, and them
compile them. (I could be wrong anyway)
Excuse me if I look stupid.
Thanks.
Ricardo Stella wrote:
If you want to use
I never got an answer so let's try again...
Now that RSA released it's patent to the public, how do we compile
openssl without RSARef ???
TIA...
begin:vcard
adr;dom:;;;Lawrenceville;NJ;08648;
adr:;;2083 Lawreceville Road;Lawrenceville;NJ;08648;
n:Stella;Ricardo
tel;fax:1-609-219-4994
http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
--
--
Ricardo Stella O.
ÖÂ
Àñ£¡
Howard
[EMAIL PROTECTED]
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
--
----
PROTECTED]
--
------
Ricardo Stella O.I.T.
(609)896-5000 x7436 _suAve_ Rider University
*** Remove 'no-spam' from e-mail address before replying. ***
begin:vcard
adr;dom:;;;Lawrencevill
PROTECTED]
--
--
Ricardo Stella O.I.T.
(609)896-5000 x7436 _suAve_ Rider University
*** Remove 'no-spam' from e-mail address before replying. ***
begin:vcard
adr;dom
]
--
--
Ricardo Stella O.I.T.
(609)896-5000 x7436 _suAve_ Rider University
*** Remove 'no-spam' from e-mail address before replying. ***
begin:vcard
adr;dom:;;;Lawrenceville;NJ;08648;
adr:;;2083 Lawreceville Road;Lawrenceville;NJ;08648;
n:Stella
uot; wrote:
Hi Ricardo,
Do you have openssl built?
Ricardo Stella wrote:
Please redirect me to a more appropiate group if needed...
How can I generate private keys and certs from my Netscape Cert Server so
I can use it with stunnel or sslwrap ? (ie in pem format ?)
TIA.
begin:
Yes, but illegal for distribution, UNLESS you can certify the requestor
is an US resident or citizen... Isn't that the case ?
My .02...
Secret Squirrel wrote:
You wrote:
RSAREF is no longer available for download.
Maybe not from rsa.com, but other sites still have it.
Just to clarify... By what RSA, we can use RSARef in the US. My main
question is the method of using RSARef with openssl/ssleay.
Since I was not able to compile openssl nor ssleay with the -rsaref
(option 1), I decided on trying -RSAglue (option 2). This DOES compile
fine, and then I was able
/libcrypto.a(err_all.o)
RSA_PKCS1_RSAref
/usr/local/ssl/lib/libcrypto.a(rsa_lib.o)
Ulf Moeller wrote:
On Thu, Apr 08, 1999, Ricardo Stella wrote:
Ok, so now I: (is that the right place to add -lRSAglue ?)
# make clean
# ./Configure -DRSAref -lrsaref -L/opt/src/sun_tools
29 matches
Mail list logo