I'm trying to set up stunnel (3.8p4) between to BSDI (BSD/OS)
boxes. One of the boxes ("Local") is behind a firewall and gets
NAT'ed when talking to the world, and the other one ("Remote")
is directly connected to the world.
My goal is to set this up such that one can initiate a tcp
connection t
Just tried to build 0.9.6-beta-1 on BSDI (BSD/OS) 4.1, and
got a problem when building openssl.
The first two lines of the "sh config" output are these:
Operating system: i486-whatever-bsdi4
Configuring for bsdi-elf-gcc
(That's gcc version egcs-2.91.66 19990314 (egcs-1.1.2 release))
When
OpenSSL 0.9.6-beta1 11 Sep 2000 builds and tests fine on
Solaris 5.7/UltraSparc with gcc 2.95.2. That is:
SunOS Release 5.7 Version Generic_106541-12 64-bit [UNIX(R) System V Release 4.0]
UltraSPARC-IIi 360MHz
gcc version 2.95.2 19991024 (release)
As usual, congratulations to the OpenSSL tea
Sorry if this is sort of off-topic, but can anyone say
what other products OpenSSL "competes" with out there,
other than RSA's BSAFE products?
Aside from the fact that OpenSSL is free and open-source (just
two minor details ;->), why should anyone use it instead
of BSAFE or other products (which
> I seem to only be getting 40bit, this is governed by the certificate and
> not the
> compiled version of openssl or apache that im using?
>
> I generated a test certificate from Thawte and installed it and
> requested
> a 128bit certificate but still only get 40bit connection, or am i
> bark
Richard,
> Out of curiosity, why would it be important to make sure the RSA key
> is password-protected here:
>
> ssl> * Generate the RSA keys into a password-protected file,
> ssl> using some file as random data seed.
> ssl> Make sure you remember the "PEM pass phrase" used to
> ssl> prot
> > I just build OpenSSL 0.9.5, standard, on Solaris (SunOS) 5.6.
> > When I run "openssl s_client -connect www.foo.bar:443" I get this:
> >
> > unable to load 'random state'
> Hey, a "me too" here.
>
> This makes sense, now. I put 0.9.5 on Solars 2.6 and 7, and IRIX
> 6.5, and with Crypt::
I just build OpenSSL 0.9.5, standard, on Solaris (SunOS) 5.6.
When I run "openssl s_client -connect www.foo.bar:443" I get this:
unable to load 'random state'
This means that the random number generator has not been seeded
with much random data.
Consider setting the RANDFILE environment varia
> i am trying to order a Global Server ID from
> verisign for apache openssl. The site does not
> list apache as supported list of servers. and
> without selecting one of the suported servers
> i cannot get the GSID.
>
> Can someone tell me how i can get GSID for
> apache openssl ?
Try the certi
> > With the absorbtion of Thawte into Verisign, we're concerned that the only
> > remotely free-software-friendly commercial CA will change its policies. The
> > lack of competition bothers us too. So, let's do something about it. A good
> > CA could do more for free software than we've seen so f
> "In God we Trust -- all others must submit an X.509 certificate."
Of course, because no CA would sign the Big Guy's cert.
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
Hi Andrea,
>> I'm trying to use Andrea Fogazzi's S/MIME verifying stuff and I get
>> an error when compiling "verify.c"
>>
>> verify.c: In function `main':
>> verify.c:124: too few arguments to function `PEM_read_bio_PKCS7'
Adding the extra NULL args made it compile, but I haven't been
able
I'm trying to use Andrea Fogazzi's S/MIME verifying stuff and I get
an error when compiling "verify.c"
verify.c: In function `main':
verify.c:124: too few arguments to function `PEM_read_bio_PKCS7'
This is with openssl 0.9.4 under BSDI 4.0.1 (gcc 2.7.2.1).
The rest of openssl compiles and link
> I'll elaborate on my previous post. What I want is to implement a poor
> man's SSL client which doesn't know what a certificate is but is capable
> to connect to any secure Web server out there (Apache, IIS, Netscape).
>
> I see it has to support Diffie-Hellman, Triple-DES and SHA1 (goodbye to
Hi Steve,
> > I need to send a message to a Netscape user (S/MIME), and encrypt
> > it using the cert he's sent me in a signed message. (In other
> > words, I'm want my script to behave like another Netscape Mail).
> > I'm using SSLeay 0.9.0b.
> >
> > Presumably I would extract his public key
I need to send a message to a Netscape user (S/MIME), and encrypt
it using the cert he's sent me in a signed message. (In other
words, I'm want my script to behave like another Netscape Mail).
I'm using SSLeay 0.9.0b.
Presumably I would extract his public key from the PKCS-7 Signature
(smime.p7
Hi Ralf,
> > Why is spam on this list??
>
> Because openssl-users allows anyone to post for convenience reasons. All
> other openssl-xxx lists allow only subscribers, but I thought it can be
> reasonable to make openssl-users more open. We can change it, of course.
> Opinions or votes?
I pers
17 matches
Mail list logo