Quantum-Resistant Cryptographic Algorithms

2022-11-01 Thread admin
Will OpenSSL persue/support the four new NIST Quantum Cryptographic Algorithms? https://www.nist.gov/news-events/news/2022/07/nist-announces-first-four-quantum-resistant-cryptographic-algorithms

Quantum-Resistant Cryptographic Algorithms

2022-10-31 Thread admin
Will OpenSSL persue/support the four new NIST Quantum Cryptographic Algorithms? https://www.nist.gov/news-events/news/2022/07/nist-announces-first-four-quantum-resistant-cryptographic-algorithms

[openssl-users] OpenSSL 1.1 X509_STORE sharing

2018-09-18 Thread admin
Hello, I have some legacy code that I am updating for 1.1 and there they set SSL_CTX::cert_store to NULL before `SSL_CTX_free`. Is this neccessary for the X509_STORE to be shared between contexts? Note that this still has to be buildable on 1.0 with the same result. In the docs it says "X509_S

[openssl-users] OpenSSL responder as a CGI

2016-06-17 Thread Dan Mahoney, System Admin
Hey there all, I'm using SSL as part of puppet, which has its own sort of CA. Puppet has no idea about OCSP, but on the master, it leaves most of its configuration to the apache backend. Since apache won't re-read a CRL unless restarted, OCSP seemed like a good answer to this. Puppet's CA

Re: Actually supporting ipv6 literals in s_client?

2013-03-20 Thread Dan Mahoney, System Admin
On Sun, 10 Mar 2013, Dan Mahoney, System Admin wrote: Hey there, Apparently supporting ipv6 literals... like openssl s_client -connect '[2001:4f8:0:2::d]:443' ..in s_client is oft-asked for but never-implemented, to the point where there are blog articles like this out ther

Actually supporting ipv6 literals in s_client?

2013-03-10 Thread Dan Mahoney, System Admin
Hey there, Apparently supporting ipv6 literals... like openssl s_client -connect '[2001:4f8:0:2::d]:443' ..in s_client is oft-asked for but never-implemented, to the point where there are blog articles like this out there: https://lwn.net/Articles/486369/, and most OSes that want to support

RE: OpenSSL (FIPS) w/Apache on Windows

2007-08-02 Thread Security Admin (NetSec)
Microsoft FIPS implementation is broken. I tried to use it with the GPO enabled for communication between Postfix mail gateway and Exchange 2007 and it did not work. Troubleshooting revealed the FIPS issue. I called into Microsoft and they are aware of the problem, however they have no plans

RE: use ssl for ssh transport layer (not proxy bypassing)

2007-07-02 Thread Security Admin (NetSec)
"I sure would appreciate if someone could tell me if this is a bad idea and why, the more I know now at this time the better." Encryption adds latency to your traffic, double encryption just adds another delay. While this extra layer of security may be necessary for servers that have processin

Re: I got Geotrust CERT but have No Key (?)

2004-09-10 Thread Dan Mahoney, System Admin
On Fri, 10 Sep 2004, Ryan Beisner (AE) wrote: https://www.geotrust.com/news_events/press/pr_reissues_083004.htm Well, apparantly they only send the CERT, not the KEY. Now you have to log into their web site to retrieve the corresponding KEY. So, now you know if you ever get one via Bulkregister.

problem after upgrading openssl

2002-09-19 Thread Admin-Stress
After I upgraded to openssl-0.9.6g (also openssl-engine) on my RedHat 7.3, I got several problem. (1) qmail-pop3d can not authenticate my username and password (2) openssh (sshd) 3.4p1 also can not authenticate my username and password, not root account Do I need to recompile ALL applications

Upgrading OPENSSL on RedHat 7.3 (Simple Guide)

2002-09-19 Thread Admin-Stress
Hi, I made this little guide to help for upgrading openssl on RedHat 7.3. Please if you find any errors / corrections, just let me know. Thanks to "David Tonhofer, m-plify S.A." <[EMAIL PROTECTED]> Regards, kapot Upgrading OPENSSL on RedHat 7.3 (Simple Guide)

Upgrading OPENSSL on RedHat 7.3 (Simple Guide)

2002-09-19 Thread Admin-Stress
Hi, I made this little guide to help for upgrading openssl on RedHat 7.3. Please if you find any errors / corrections, just let me know. Thanks to "David Tonhofer, m-plify S.A." <[EMAIL PROTECTED]> Regards, kapot Upgrading OPENSSL on RedHat 7.3 (Simple Guide)

No Subject

2001-08-21 Thread Admin
Hi   We own a website www.fexin.com . We have purchased SSL certificate from Verisign and installed it on our web server. This certificate has been expired in july 2001. Can we now use OpenSSL to create a SSL Certificate and then install it on web server ? We have downloaded openssl-0.9.6b.ta

clean up

2001-02-10 Thread admin
Our email data files got corrupted. We found your address in the mess. Why you're there, we don't know. Maybe you can tell us . If you don't know (or don't care) just please ignore this notice. Your address will be zapped and blown to bits after this mailing unless you te

Re: pkcs12 into IE5.5, stubborn priv keys

2000-10-05 Thread admin
At 12:19 AM 06/10/2000 +0100, you wrote: >The only documented way to change the level is to delete the container >and recreate it. > >You can do things by deleting the key container at a CryptoAPI level, >but you need a fair knowledge of CryptoAPI to do that. > >I recall Outlook (maybe Outlook exp

pkcs12 into IE5.5, stubborn priv keys

2000-10-05 Thread admin
Hi, I import my pkcs12 personal certificate (openssl generated) into IE5.5. It takes it without a problem and puts everything in its place: CA cert, personal cert, private key. The problem is that once I set up the initial security level on the private key (low, medium, high, and the passwo

windows openssl.DLL ?

2000-03-20 Thread gill admin
is there a windows ssl version ? __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PRO

Error 1 Message

1999-09-23 Thread admin
I am trying to install openssl-0.9.4 and When I type ./config I get the following message at the end. ---start message " Reconfigure the source tree (via './config' or 'perl Configure'), Please. make: *** [Makefile.ssl] Error 1 ---end message

Re: transfer of certificates?

1999-09-20 Thread Admin Mailing Lists
ie today" http://cygnus.ncohafmuta.comhttp://www.intergrafix.net .-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-. On Mon, 20 Sep 1999, Admin Mailing Lists wrote: > Hi, I'm just starting to run apache 1.3.9 with v1.3.7 of the apache-ssl > patch, an

transfer of certificates?

1999-09-20 Thread Admin Mailing Lists
Hi, I'm just starting to run apache 1.3.9 with v1.3.7 of the apache-ssl patch, and openssl 0.9.4 This is all on Caldera Linux, 2.2.10 kernel I've BEEN running Netscape Fasttrack for a while now..which has built in SSL support. I have SSL certificates with my Netscape server, how specifically wo

error complie 0.9.4, HELP!!

1999-08-26 Thread System Admin.
build/openssl-0.9.3a/crypto/sha' make[1]: *** [subdirs] Error 1 make[1]: Leaving directory `/build/openssl-0.9.3a/crypto' make: *** [all] Error 1 how can I fix this? please help! pe' ------ UNIX System Admin. Distributed Computing Services Lake Superior St

Re: openssl on redhat 6.0

1999-06-25 Thread admin linux
admin linux wrote: > hi, >been trying to make on linux redhat 6.0 openssl unsucessfully. has anyone been able to build cleanly openssl*.tar.gz on redhat 6.0? TIA Rick __ OpenSSL P

Re: Can't compile openssl on Solaris 7

1999-06-01 Thread System Admin.
pe' -- UNIX System Admin. Distributed Computing Services Lake Superior State University 650 W. Easterday Ave. Sault Ste. Marie. MI 49783 USA. -- On Wed, 2 Jun 1999, Bodo Moeller wrote: > On Tue, Jun 01, 1999 at 04:15:40PM -0400, Y