Re: Newbie Question here...

On 4/24/2012 6:19 PM, bfinkel...@aaamissouri.com wrote: I have installed Win32 Binary including OpenSSL 0.9.8t (MSI Installer): httpd-2.2.22-win32-x86-openssl-0.9.8t.msi on my windows server. I want

Newbie Question here...

I have installed Win32 Binary including OpenSSL 0.9.8t (MSI Installer): httpd-2.2.22-win32-x86-openssl-0.9.8t.msi on my windows server. I want to upgrade JUST openSSL that's bundled with this install to the latest PCI compliant version. I want to go to OpenSSL 0.9.8u or possibly w.How c

Re: Resources for certificates using OpenSSL (newbie)

On Fri February 24 2012, Edward Ned Harvey wrote: > > From: owner-openssl-us...@openssl.org [mailto:owner-openssl- > > us...@openssl.org] On Behalf Of Michael S. Zick > > > > You must be new to mailing lists also. > > Start your own thread, they are cheap here, don't hijack another topic. > > Mik

Re: Resources for certificates using OpenSSL (newbie)

On 2/24/2012 8:27 PM, Edward Ned Harvey wrote: From: owner-openssl-us...@openssl.org [mailto:owner-openssl- us...@openssl.org] On Behalf Of Michael S. Zick You must be new to mailing lists also. Start your own thread, they are cheap here, don't hijack another topic. Mike, How do you call that a

RE: Resources for certificates using OpenSSL (newbie)

> From: owner-openssl-us...@openssl.org [mailto:owner-openssl- > us...@openssl.org] On Behalf Of Michael S. Zick > > You must be new to mailing lists also. > Start your own thread, they are cheap here, don't hijack another topic. Mike, How do you call that a thread hijack? New subject, new threa

Re: Resources for certificates using OpenSSL (newbie)

On Fri February 24 2012, Jaquez Jr, Hector L. wrote: > Hello, > I am new to certificates, how to create them, how to import > them etc. You must be new to mailing lists also. Start your own thread, they are cheap here, don't hijack another topic. Mike > I am looki

Resources for certificates using OpenSSL (newbie)

Hello, I am new to certificates, how to create them, how to import them etc. I am looking for good training material that I can read over to learn more about this. I can create a CSR file but don't know how to import it using command line or GUI for that matter. We have serve

Re: Newbie confusion

On 8 Dec 2011, at 13:55, Jeffrey Walton wrote: > When working with OpenSSL on Windows, I prefer Shining Light's gear. > Thomas Hruska does a great job of building and packaging OpenSSL. > Good suggestion Jeff, thanks. I'll look into that. John _

Re: Newbie confusion

On Thu, Dec 8, 2011 at 8:45 AM, John Emmas wrote: > > Please ignore my previous email for the moment.  It seems we're not sure > whether out binaries are official, pre-built ones or if they were built > elsewhere. > > Presumably there are some official Windows DLLs and libs somewhere are there?

Re: Newbie confusion

Please ignore my previous email for the moment. It seems we're not sure whether out binaries are official, pre-built ones or if they were built elsewhere. Presumably there are some official Windows DLLs and libs somewhere are there? John

Newbie confusion

Hello - I've been asked to debug a program where someone has (unsuccessfully) tried to add OpenSSL support using OpenSSL version 0.9.8h. We're building using Visual C++ 8 (Visual Studio 2005) and we get a runtime exception (access violation error) whenever we call any of the "BIO" functions (BI

Re: Help A Newbie , Please

Thanks alot Mike it turns out all that googling is not gold after all...! On Wed, Feb 23, 2011 at 7:33 PM, Michael S. Zick wrote: > On Wed February 23 2011, Hammad Bhutta wrote: > > thanks for your reply but can you direct me with the link. Plus how can i > > make the appache listne to port 443 >

Re: Help A Newbie , Please

On Wed February 23 2011, Hammad Bhutta wrote: > thanks for your reply but can you direct me with the link. Plus how can i > make the appache listne to port 443 > Here is a good starting point: http://httpd.apache.org/docs/2.0/ssl/ssl_faq.html Google can probably answer anything you don't find a

Re: Help A Newbie , Please

wao .. thanks :D On Wed, Feb 23, 2011 at 7:44 PM, John Doe wrote: > From: Hammad Bhutta > > On Wed, Feb 23, 2011 at 4:40 PM, John Doe wrote: > >> It seems apache is listening on 80 and not 443... > >> Maybe ask on the apache mailing list. > > thanks for your reply but can you direct me with th

Re: Help A Newbie , Please

From: Hammad Bhutta > On Wed, Feb 23, 2011 at 4:40 PM, John Doe wrote: >> It seems apache is listening on 80 and not 443... >> Maybe ask on the apache mailing list. > thanks for your reply but can you direct me with the link. Plus how can i > make > the appache listne to port 443 http://tinyu

Re: Help A Newbie , Please

thanks for your reply but can you direct me with the link. Plus how can i make the appache listne to port 443 On Wed, Feb 23, 2011 at 4:40 PM, John Doe wrote: > From: Hammad Bhutta > > Whenever i type https://bhutta.com my browser pops up eror. > > when i type http://bhutta.com/file.php everyt

Re: Help A Newbie , Please

From: Hammad Bhutta > Whenever i type https://bhutta.com my browser pops up eror. > when i type http://bhutta.com/file.php everything works It seems apache is listening on 80 and not 443... Maybe ask on the apache mailing list. JD

Re: Newbie Struggles with SMIME

Did I mention I was a rookie? :-) I had not tried that. Excellent suggestion, thank you. I just did (after a crash course in cert & key exports). I do get the following error, however I signed the message and my certs are decrypting it. Verify error:self signed certificate in certificate chain

Re: Newbie Struggles with SMIME

On Tue, Feb 15, 2011, ManicPixel wrote: > Hello, > > > I've been searching the mail archives for days and pouring over the examples > in the /demo projects and can't seem to figure this one out on my own. I'm > trying to use OpenSSL to encrypt and decrypt S/MIME messages. I'd be happy > with d

Newbie Struggles with SMIME

Hello, I've been searching the mail archives for days and pouring over the examples in the /demo projects and can't seem to figure this one out on my own. I'm trying to use OpenSSL to encrypt and decrypt S/MIME messages. I'd be happy with decrypt at this point! I am a rookie with encryption an

RE: (newbie) private key vs. keystore confusion

it's both--a private key/certificate pair, but if one wanted, multiple certificates--and I guess multiple private keys--could be stored within the same file. Glen -Original Message- From: Mazza, Glen R. Sent: Mon 12/28/2009 6:19 PM To: openssl-users@openssl.org Subject: RE: (newbie)

RE: (newbie) private key vs. keystore confusion

ytool.html From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] On Behalf Of Anand Patel Sent: Sunday, December 27, 2009 9:10 PM To: openssl-users@openssl.org Subject: Re: (newbie) private key vs. keystore confusion Not sure what y

Re: (newbie) private key vs. keystore confusion

On Sun December 27 2009, Anand Patel wrote: > Not sure what you mean by keystore but above command combines certificate > and key in PKCS12 format "service.p12". > -Anand > > On Thu, Dec 24, 2009 at 10:33 AM, Mazza, Glen R. wrote: > > > Hello, I'm confused somewhat about the workings of OpenSSL,

Re: (newbie) private key vs. keystore confusion

PKCS #12 is the standard format for communicating an encrypted private key along with a certificate. It is typically used to move a private key and its associated public certificates from one system to another, or to back up (say) a webserver's private key and its certificate. -Kyle H On Thu, De

Re: (newbie) private key vs. keystore confusion

Not sure what you mean by keystore but above command combines certificate and key in PKCS12 format "service.p12". -Anand On Thu, Dec 24, 2009 at 10:33 AM, Mazza, Glen R. wrote: > Hello, I'm confused somewhat about the workings of OpenSSL, in particular > the following command: > > > > openssl p

(newbie) private key vs. keystore confusion

Hello, I'm confused somewhat about the workings of OpenSSL, in particular the following command: openssl pkcs12 -export -inkey servicekey.pem -in servicecert.pem -out service.p12 -name myservicekey -passin pass:sspass -passout pass:skpass Question: Does the above command create a private key

(newbie) private key vs. keystore confusion

Hello, I'm confused somewhat about the workings of OpenSSL, in particular the following command: openssl pkcs12 -export -inkey servicekey.pem -in servicecert.pem -out service.p12 -name myservicekey -passin pass:sspass -passout pass:skpass Question: Does the above command create a private key

Re: Newbie question on EVP API

Alexey Luchko writes: > I'm new to openssl. > I've got two questions on EVP API: > > 1. What do EVP_EncryptInit_ex and EVP_CipherInit_ex differ with? > When should I use encrypt/decrypt and when cipher? If you look at the source, EVP_EncryptInit_ex/EVP_DecryptInit_ex are just trivial wrapper

Newbie question on EVP API

Hi! I'm new to openssl. I've got two questions on EVP API: 1. What do EVP_EncryptInit_ex and EVP_CipherInit_ex differ with? When should I use encrypt/decrypt and when cipher? 2. Where can I read about cipher modes? There are several modes for each cipher on http://openssl.org/docs/c

RE: Newbie questions: extracting public key's exponent and modules.

ber 22, 2009 6:20 AM To: openssl-users@openssl.org Subject: Newbie questions: extracting public key's exponent and modules. Hi All, Here is the part of the code that was previously developed. The code successfully extract a public key from some secure server, now I like to know how to extract th

Newbie questions: extracting public key's exponent and modules.

Hi All, Here is the part of the code that was previously developed. The code successfully extract a public key from some secure server, now I like to know how to extract the exponent and modules of the public key (rsa_public_key). EVP_PKEY *public_key = NULL; RSA *rsa_public_key =

Re: newbie program crashing.

-openssl-us...@openssl.org] On Behalf Of Neil Dugan Sent: Sunday, August 02, 2009 8:01 AM To: openssl-users@openssl.org Subject: newbie program crashing. Hi, I have been trying to figure out why this is crashing with a 'Segmentation fault', as far as I can see all the buffers etc. are getting se

RE: newbie program crashing.

nent rsa->d which is NULL now. Peter -Original Message- From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] On Behalf Of Neil Dugan Sent: Sunday, August 02, 2009 8:01 AM To: openssl-users@openssl.org Subject: newbie program crashing. Hi, I have been tryin

newbie program crashing.

Hi, I have been trying to figure out why this is crashing with a 'Segmentation fault', as far as I can see all the buffers etc. are getting setup and passed around correctly. If I comment out line 51 with the call to RSA_private_decrypt() I don't get the 'Segmentation fault'. Help Please.

Newbie question: how could I sign an image

HI All, How could I sign an image using SHA256 or RSA? Thanks, B __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manag

Re: Newbie questions: generating RSA PGP private & Public key pair

If you need to create a PGP key, OpenSSL does not do this. The package you're looking for is GNU Privacy Guard, or gnupg, available from http://gnupg.org/. -Kyle H On Fri, Jun 19, 2009 at 11:08 AM, Bizhan Gholikhamseh (bgholikh) wrote: > Hi, > Thanks for yor help. >> Are you doing this for a cer

RE: Newbie questions: generating RSA PGP private & Public key pair

Hi, Thanks for yor help. > Are you doing this for a certificate request? No this is part of creating public and private key to exchange secure information on line. > > openssl genrsa -des3 2048 > mykey.key > openssl req -new -key mykey.key -sha256 I have more questions: 1- After issuing above com

Re: Newbie questions: generating RSA PGP private & Public key pair

Are you doing this for a certificate request? openssl genrsa -des3 2048 > mykey.key openssl req -new -key mykey.key -sha256 I do not believe that OpenSSL implements CAST. (the -des3 tells it to use triple-DES; you can instead use -aes256 to use AES at 256 bits.) -Kyle H On Thu, Jun 18, 2009 at

Newbie questions: generating RSA PGP private & Public key pair

HI I have never used openssl and need to get some info quickly. I greatly appreciate if you could help me out by providing me exact command syntax. I am suppose to create "2048-bit RSA PGP private & public key pair". With a preferred CAST cipher and SHA-2 256 hash. Could I use openssl to do this

Re: Newbie: PKCS#10 request for an existing key pair

instantiates that engine? Again the documentation provides some information on this., so my answer is yes. Thanks From: Patrick Patterson To: openssl-users@openssl.org Sent: Thursday, June 4, 2009 8:41:24 PM Subject: Re: Newbie: PKCS#10 request for an existing

Re: Newbie: PKCS#10 request for an existing key pair

Hi Raj: On June 4, 2009 12:58:02 pm Raj wrote: > Hello Experts, > > I request your expert opinion in generating a PKCS#10 CSR; > > I have generated my RSA 1024 private public key pair in the HSM. The HSM > exposes the keys as handles. > First question: Do you have OpenSSL patched to use that parti

Newbie: PKCS#10 request for an existing key pair

Hello Experts, I request your expert opinion in generating a PKCS#10 CSR; I have generated my RSA 1024 private public key pair in the HSM. The HSM exposes the keys as handles. I am seeing that OpenSSL is raising the CSR (-new) but it generates the RSA key pair. In my case, i already have the

Re: Newbie Questions

On January 6, 2009 12:20:47 pm Richard Lichvar wrote: > A newbieto OpenSSL here. (Mainly used to using 3rd party authorities.) > Not very good at command line stuff either. > > > > 1. Cert request generated from IIS 6 but it is against the default > website with .txt extension. Can a cert be

Newbie Questions

ed will be recognized by IIS? Many thanks in advance for your help to this newbie. Rich Lichvar P.S. Yes, I know there is a cert generation tool in the IIS Reskit; however, it will not generate a cert against the Default IIS web site.

Re: HTTPS PKCS11 newbie

Hello Patrick, Thanks for help ... - My Background: Working with a server application that has a programming language (ADVPL), in the server I am responsible for some protocols such as http/https - server/client :) and now I am having to use an HSM. Currently supports only the fo

Re: HTTPS PKCS11 newbie

Hello again: Aaack - my bad for not re-reading the post - the openssl.cnf section should be: [ openssl_init ] engines = engine_section oid_section = new_oids [ engine_section ] lunahsm = luna_hsm [ luna_hsm ] engine_id = LunaCA3 init

Re: HTTPS PKCS11 newbie

Hi Ricardo: On September 17, 2008 12:52:23 pm Ricardo Garcia Reis wrote: > Hey fellows, > > I want your help, to implement an integration with SafeNet HSM Hardware. I > know OpenSSL, but never used with PKCS#11. > The Engine interface is your friend :) And WHICH Safenet HSM? Have you taken a look

HTTPS PKCS11 newbie

Hey fellows, I want your help, to implement an integration with SafeNet HSM Hardware. I know OpenSSL, but never used with PKCS#11. I have a HTTPS server and wonders how do I inform the certificate, privatekey and passphrase for the HTTPS handshake using PKCS#11. How to change my functions load_k

Newbie certificate problem (using PKCS#7 in Apache)

All, I have what is probably going to be an extremely newbie issue/question. I have a customer moving to us who uses Apache Tomcat with a PKCS#7 certificate and an accompanying .key file which looks rather foreign to me. Personally, i've never dealt with anything outside of the "pla

Re: Newbie : is it possible to use SSL on multiple targets with just IP addresses ?

Hi, If I understand what you want to do, the answer is yes, it can be done. You can create a generic certificate with a given CN to be used in the embedded web server. The next question is... who will use this web server? If it's a program, so your system is used as an update server (for in

Newbie : is it possible to use SSL on multiple targets with just IP addresses ?

We are designing a new embedded system which runs its own web server. When installed in the field, the majority of the units will *not* have a domain-name, just a local IP address, since they will be mostly be used on company intranets (and so could be *any* ip address I guess). Most units wil

Re: newbie: problem + RSA

Hello, [EMAIL PROTECTED] wrote on 05/30/2008 12:34:15 PM: > Hello, > i have created the following code to test the use of RSA (signautre): > > #include > #include > #include > #include > #include > #include > #include > #include > #include > #include > #include > > main () > { > > l

newbie: problem + RSA

Hello, i have created the following code to test the use of RSA (signautre): *#include #include #include #include #include #include #include #include #include #include #include main () { long erreur = 0; char *message="vatos locos para siempre"; char *encrypt, *decrypt, *sign, hash[SH

Re: newbie question: sample s_server usage

On 9/28/07, Deep Chand <[EMAIL PROTECTED]> wrote: > > Hi, > > I'm a newbie to openssl and openssl toolkit. i need to add support for tls > to one java client including client authentication, and i've made the > changes to the client and need to test it with serv

newbie question: sample s_server usage

Hi, I'm a newbie to openssl and openssl toolkit. i need to add support for tls to one java client including client authentication, and i've made the changes to the client and need to test it with server, so trying to use s_server. I have used keytool utility supplied with jdk1.4 t

RE: newbie: set cert time validity

No wonder I couldn't find the MakeCertificate function, it's actually resides in an external library. I 'll try to do anything I could to make sure it works as needed.. However, thank you very much for your help David Schwartz.. if you were in java.sun.com forum I'd surely have given you at

Re: newbie: set cert time validity

No wonder I couldn't find the MakeCertificate function, it's actually resides in an external library. I 'll try to do anything I could to make sure it works as needed.. However, thank you very much for your help David Schwartz.. if you were in java.sun.com forum I'd surely have given you at least

RE: newbie: set cert time validity

thanks a lot for your lenghty explanation, David Schwartz. I really appreciate it for you to help me explain all this. I noted you said that what I did might be sensible if three things are the case: 1) The locale you are using the certificate has no daylight savings time. 2) The certifica

Re: newbie: set cert time validity

thanks a lot for your lenghty explanation, David Schwartz. I really appreciate it for you to help me explain all this. I noted you said that what I did might be sensible if three things are the case: 1) The locale you are using the certificate has no daylight savings time. 2) The certificate isn't

RE: newbie: set cert time validity

hold on! thanks a lot I managed to get it to 23:59:59. all i had to do was change the value strcpy(buf+6, "235959Z"); to strcpy(buf+6, "155959Z"); I would not do that. There is no way you can know that 15:59:59 will correspond to 24:59:59 in the future when the certificate expires. You ar

Re: newbie: set cert time validity

erm... but there's still one problem. where in IssueCertificate should I add the line X509_gmtime_roundup(X509_get_notAfter(x)); ? because currently the line is only added in renewCertificate... as I can't see where in IssueCertificate can I add those lines.. thanks again On 7/16/07, David Schwar

Re: newbie: set cert time validity

hold on! thanks a lot I managed to get it to 23:59:59. all i had to do was change the value strcpy(buf+6, "235959Z"); to strcpy(buf+6, "155959Z"); thanks again, David Schwartz! You're a great help!! On 7/16/07, David Schwartz <[EMAIL PROTECTED]> wrote: I added the X509_gmtime_roundup(X509_

Re: newbie: set cert time validity

I see... does this mean I can't make it to expire at 23:59:59 for the particular day? This is the UTC/GMT time for which area...? hmm.. actly i'm still confused... anyway it's ok then if I can't make it that way. Is there any way I can convince my boss that (besides sending him a copy of this ema

RE: newbie: set cert time validity

I added the X509_gmtime_roundup(X509_get_notAfter(x)); at my renewCertificate function. When I renewed the cert valid to for example, to 31/7/2007, the cert valid to will be strangely changed to '1/8/2007 7:59:59". May I know which part should I alter here? There is nothing to change, as it

Re: newbie: set cert time validity

Thanks a lot for your help, David Schwartz! I haven't got it correctly yet, but with your help I could see I'm moving somewhere here. I added the X509_gmtime_roundup(X509_get_notAfter(x)); at my renewCertificate function. When I renewed the cert valid to for example, to 31/7/2007, the cert valid

RE: newbie: set cert time validity

This function rounds an ASN1_UTCTIME up to the end of the day it belongs to. You need to call this function on an ASN1_UTCTIME before you set it as the 'not valid after' date: void X509_gmtime_roundup(ASN1_UTCTIME *s) { /* Rounds an ASN1_UTCTIME up to the end of the current day */ char buf[32];

Re: newbie: set cert time validity

Thanks a lot for trying to help me. here's the snippet of the code: the function that calls IssueCertificate has this line in them: cinfo.begin_validity = day_start; cinfo.validity = day_end; both day_start and day_end are int variables. then they are passed to the IssueCertificate function as

(complete) newbie question

Hi Guys 'n' girls, I've been a member of the list, but not really reading (because WOW - it's technical!) but nonetheless want to get my head around not only the production of certificates, but also their implimentation on servers. What my sole goal(s) [!] is, is to be able to: 1. Produce my ow

RE: newbie: set cert time validity

> thanks a lot for answering my question.. but is this the only way? > it seems a bit overwhelming for me.. isn't there any other way? > like any function we can call? Rather than risking you screwing up security-critical code, why don't you paste the part of the code that sets the validity and

Re: newbie: set cert time validity

thanks a lot for answering my question.. but is this the only way? it seems a bit overwhelming for me.. isn't there any other way? like any function we can call? thanks On 7/13/07, Jim Fox <[EMAIL PROTECTED]> wrote: On Jul 12, 2007, at 9:29 PM, imin macho wrote: > hi... > > i'm a noob in ope

Re: newbie: set cert time validity

On Jul 12, 2007, at 9:29 PM, imin macho wrote: hi... i'm a noob in openssl.. my employee asked me to edit our c++ cert issuer engine developed using openssl. currently the cert generated will be valid based on the time we generate it. for example, if i generate a cert at 13 july 2007 1:3

newbie: set cert time validity

hi... i'm a noob in openssl.. my employee asked me to edit our c++ cert issuer engine developed using openssl. currently the cert generated will be valid based on the time we generate it. for example, if i generate a cert at 13 july 2007 1:30pm and set its validity for 5 days, the cert will be va

Re: newbie installation problem - Makefile.org not found

Hi, Endhy, Thank you so much for your help. Obviously I am missing a lot more files than just this one. I've found out the problem. What I did the first time was - I decompressed the file on Windows, transferred the tar file to AIX, then un-tar on AIX. Apparently a lot of files are lost in t

Re: newbie installation problem - Makefile.org not found

Hi, Here's the Makefile.org (attachment). If you're downloading the complete source code, this file should have been included. Regards, --Endhy Makefile.org Description: Binary data

newbie installation problem - Makefile.org not found

I've downloaded openssl-0.9.8e and tried to run ./config, but got this error message: unable to read Makefile.org:A file or directory in the path name does not exist. I searched the directory and did not find Makefile.org. Is it missing from my download? I downloaded some earlier versions and

Re: Newbie build question

Please ignore. My silly mistake. Got it to build. Sumati Gupta <[EMAIL PROTECTED]> wrote: Hi, This is a newbie question: I downloaded the openssl source and built libssl and libcrypto with the linux-debug-elf option. I removed the efence library from the make file since I don't h

Newbie build question

Hi, This is a newbie question: I downloaded the openssl source and built libssl and libcrypto with the linux-debug-elf option. I removed the efence library from the make file since I don't have it. Now when I link the two libs with my app, I get a whole bunch of links errors like: /us

Re: Newbie questions

Much appreciated Endhy. Garyc --- Endhy Aziz <[EMAIL PROTECTED]> wrote: > I wrote : > "One of the chapter, "Designing With SSL" may help > ". > > Should be : > One of the chapter, "Coding With SSL" may help > > Regards, > > --Endhy > > > > > > > > __

Re: Newbie questions

I wrote : "One of the chapter, "Designing With SSL" may help ". Should be : One of the chapter, "Coding With SSL" may help Regards, --Endhy

Re: Newbie questions

See "SSL and TLS" by Eric Rescorla. It describes SSL protocol completely, including how to program with SSL. One of the chapter, "Designing With SSL" may help you. --Endhy

Re: Newbie questions

Excellent Chas. Thanks, Garyc --- "Chas." <[EMAIL PROTECTED]> wrote: > When I get back to my house this evening I will send > you the file. Will that > be alright? > > Chas. > > On 5/23/07, gary clark <[EMAIL PROTECTED]> > wrote: > > > > Hey Chas, > > > > You dont happen to know the link. Did a

Re: Newbie questions

When I get back to my house this evening I will send you the file. Will that be alright? Chas. On 5/23/07, gary clark <[EMAIL PROTECTED]> wrote: Hey Chas, You dont happen to know the link. Did a quick search and just got the pdf with just the first 5 chapters? Much appreciated, Garyc --- "Ch

Re: Newbie questions

Hey Chas, You dont happen to know the link. Did a quick search and just got the pdf with just the first 5 chapters? Much appreciated, Garyc --- "Chas." <[EMAIL PROTECTED]> wrote: > I believe a PDF is available for free on the > Internet. I googled for it a > few weeks ago thinking I would find a

Re: Newbie questions

I believe a PDF is available for free on the Internet. I googled for it a few weeks ago thinking I would find an abstract of it and instead found the entire book. Chaz On 5/23/07, gary clark <[EMAIL PROTECTED]> wrote: Hey Mark, Yep I think your right. Ordered the Network Security with OpenSSL

RE: Newbie questions

Hey Mark, Yep I think your right. Ordered the Network Security with OpenSSL book. Thanks, Garyc --- Mark <[EMAIL PROTECTED]> wrote: > Hi, > > > I downloaded and installed open-ssl on a windows > > environment. I then used the openssl application > to > > start the s_client and s_server. > >

RE: Newbie questions

Hi, > I downloaded and installed open-ssl on a windows > environment. I then used the openssl application to > start the s_client and s_server. > > I ran the client and server with the following > commands. I then attempted to connect my client to the > s_server. I managed to connect to the serv

Newbie questions

Hello, I downloaded and installed open-ssl on a windows environment. I then used the openssl application to start the s_client and s_server. I ran the client and server with the following commands. I then attempted to connect my client to the s_server. I managed to connect to the server but fail

Re: Newbie Questions

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Rocky S schrieb: > 1) I have installed openssl sources. In the certs directory, > there are various certificates. I looked at a couple of > them - aol1.pem & vsign1.pem. > > The vsign1.pem starts with [...] > The aol1.pem directly starts with BEGIN_C

Newbie Questions

I am a newbie with both openssl & security in general. So excuse me if my questions are naive. 1) I have installed openssl sources. In the certs directory, there are various certificates. I looked at a couple of them - aol1.pem & vsign1.pem. The vsign1.pem starts with subject=/C=US/O=

Re: Newbie assumptions & questions

Bruno Costacurta schrieb: [...] - serial information within the certificate is useless If you are still talking of only the serial number you are correct. But if you also know the issuing CA you can uniquely identify the certificate. A CRL (Certificate Revocation List) for example w

Re: Newbie assumptions & questions

On Friday 23 February 2007 15:32:54 Bernhard Froehlich wrote: > Bruno Costacurta schrieb: > > Hello, > > > > as a newbie, I have some assumptions / questions hereafter about OpenSSL > > and certificates. Many thanks to correct / confirm me. > > > > - a ce

Re: Newbie assumptions & questions

Bruno Costacurta schrieb: Hello, as a newbie, I have some assumptions / questions hereafter about OpenSSL and certificates. Many thanks to correct / confirm me. - a certificate is a public key with metadata - metadata contain mandatories (ie. subject and issuer) and optional parameters

Newbie assumptions & questions

Hello, as a newbie, I have some assumptions / questions hereafter about OpenSSL and certificates. Many thanks to correct / confirm me. - a certificate is a public key with metadata - metadata contain mandatories (ie. subject and issuer) and optional parameters - there is no relation between

Re: OpenSSL newbie

> Yes, 'epoll' is the most efficient mechanism on Linux. I recommend using > level-triggered events because it's simpler. That's the opposite as to what I have done. :) From what I have read I gathered that Event Triggered is MUCH faster. But I guess I could have gotten it all wrong. > More gener

RE: OpenSSL newbie

> I'm quite aware that that high goal is quite hard to reach, but > still it's my > goal. Aim for the star and you'll reach the top of trees. That make sense. > Yeah, I have been reading up a lot on select and poll, etc. > It seems epoll is the way to go. Yes, 'epoll' is the most efficient mech

Re: OpenSSL newbie

> > I'm about to develop a server application which should be able to > > handle ALOT of connections, say 20k-30k > > Any suggestions as to how I should tackle this problem? > > It takes a lot of experience to develop a system that can handle more than > 10,000 simultaneous connections. I don't thi

RE: OpenSSL newbie

> I'm about to develop a server application which should be able to > handle ALOT of connections, say 20k-30k > Any suggestions as to how I should tackle this problem? It takes a lot of experience to develop a system that can handle more than 10,000 simultaneous connections. I don't think it's re

OpenSSL newbie

Hi I'm about to develop a server application which should be able to handle ALOT of connections, say 20k-30k Any suggestions as to how I should tackle this problem? I am really new with OpenSSL and haven't really grasped it all yet. I've been searching the net for a couple of days now just to find

RE: Newbie question

TECTED] On Behalf Of Bertram Scharpf Sent: Wednesday, January 31, 2007 7:44 PM To: openssl-users@openssl.org Subject: Re: Newbie question Hi, Am Mittwoch, 31. Jan 2007, 13:02:13 -0500 schrieb Doug Kunzman: > Can openssl be used for HTTP communication without using SSL if in the > future we

Re: Newbie question

On Wed, Jan 31, 2007, Doug Kunzman wrote: > All - > > I was looking for an interface or factory class like java has were you can > switch between SocketFactory and SSLSocketFactory and both implement the > Socket interface. Does this help? The port is no big deal but the low > level asynchrono

  1   2   3   4   5   >