I'm trying to install Ruby 1.9 from source, and I can't seem to get it to figure out where the OpenSSL headers and libraries are located. ruby-1.9.2/ext/openssl/extconf.rb says it can't find openssl/ssl.h -- which I've very definitely installed in ~/.local/include (the corresponding OpenSSL library is in ~/.local/lib). How can I tell Ru...
I downloaded Android SDK when I run setup, it displays the following error message. Failed to fetch URL https://dl-ssl.google.com/android/repository/repository.xml, reason: HTTPS SSL error. You might want to force download through HTTP in the settings. Any hints? ...
Background RSA key generation with OpenSSL on Linux using the command, openssl genrsa -out mykey.pem 1024 created the following: "-----BEGIN RSA PRIVATE KEY----- MIICXQIBAAKBgQChs9Fepy5FgeL0gNJ8GHcKRHsYnM2Kkw19zwydDQNyh2hrHWV2 B11wpLFp8d0imcl2Wjb0oV/AxOhb3unQgNzs66LVuXJwS8icp3oIJZtExs6tkxzE s5mnU68wMeCYtJqHIZOmNblVWvpJMLNAwAVi3o...
I'm adding HTTPS support to code that does input and output using boost tcp::iostream (acting as an HTTP server). I've found examples (and have a working toy HTTPS server) that do SSL input/output using boost::asio::read/boost::asio::write, but none that use iostreams and the << >> operators. How do I turn an ssl::stream into an iostre...
I have a single key encrypted HTTP Live Stream which decodes fine in Quicktime and iPhone. I'm trying to create a simple client application to do the decryption of the ts files. Right now I've used openssl to decrypt. I believe I have the correct arguments to openssl and I'm inserting the key and the IV properly. I can successfully d...
I'm developing an application that requires testing email. I'm currently using wampserver, but it doesn't come with a mail server and setting one up has been a pain. Also if I use an external mail server like yahoo, I run into issues because wamp doesn't come with SSL which yahoo's mail server requires. So I'm trying to save myself...
Hi, Is there a cross-platform compliant way of finding out the path to the main executables of OpenSSL and GnuPG? Obviously this would be null if the software was not installed or detected. ...
Apache 2.2.16 is currently the "best available version" of the HTTP Server. I made some changes to the source and need to recompile with OpenSSL. My question is, should I use OpenSSL 0.9.8o or OpenSSL 1.0.0a? The latter is a more recent, major release, but Apache couples HTTPD 2.2.16 with OpenSSL 0.9.8o in their binary offering. See ...
Hi, Iam a new member into this forum. Issue: I have to integrate openssl in my project.project is implemented with gsoap. in "r = SSL_connect(soap->ssl)) <= 0)" SSL_connect call is unable to make a connection to the server.Both server and client are in local host I see server is ready to accept the connections, as I see below c...
Hi, I need to use openssl in java code. e.g. $ openssl genrsa -out private.pem 2048 $ openssl pkcs8 -topk8 -in private.pem -outform DER -out private.der -nocrypt $ openssl rsa -in private.pem -pubout -outform DER -out public.der Is there any library or method to implement this? ...
Assuming the following code, i have strange error in my base64 encodings. #include <openssl/bio.h> #include <openssl/buffer.h> #include <stdio.h> #include <string.h> char * base64(unsigned char * input, int length) { BIO *b64 = NULL; BIO * bmem = NULL; BUF_MEM *bptr = NULL; char * output = NULL; b64 = BIO_new((BIO...
On modern browsers, my site gets marked as sorta insecure: Google Chrome for example says "The server does not support the TLS renegotiation extension" in the "Page Information". HTTPS runs fine though, the connection is encrypted and the certificate is valid. # openssl version OpenSSL 0.9.8g 19 Oct 2007 # cat /etc/debian_version 5....
I'm trying to write a simple mail retrieval program in python. It seems the connection is getting established. But when I try to authorize it with the username, I don't get a reply from the server. Can anyone tell me what is going wrong here? import socket, sys from OpenSSL import SSL ctx = SSL.Context(SSL.SSLv23_METHOD) print "Creat...
Hi guys, just a very general question, but can somebody tell me when I use openSSL and when IPSEC to secure data transfer over the internet? It seems both of them are doing the same, only at different levels of the network protocol. So I am not absolutely sure why we need both of them. Cheers for your help ...
The following command is hanging openssl req -key server.key -out server.csr Any idea what the problem could be ? ...
Hi, I have this code in C that use openssl library to calculate the SHA1 digest of a bignumber. How I can translate this code in Ruby? #include <stdio.h> #include <openssl/sha.h> #include <openssl/bn.h> int main () { // Create a bignum = 3 struct bignum_st *bn = BN_new (); BN_set_word (bn, 3); // Initialize SHA1 contex...
I am using the function SSL_CTX_set_cipher_list to set the ciphers supported for the SSL connection. What argument to pass to SSL_CTX_set_cipher_list to disable weak ciphers. I tried passing ALL:!ADH:!LOW:!EXP:!MD5:@STRENGTH but it doesn't seem to work. My tool to detect weak cipher reports for the following as enabled still ** SSLv3...
Hi All, I'm new to OpenSSL. I understand that encryption should be performed using the EVP API which acts as a common interface to all the ciphers. AES CTR mode seems to be present in the version of OpenSSL that I have, but the definition for EVP_aes_128_ctr is disabled in evp.h: #if 0 const EVP_CIPHER *EVP_aes_128_ctr(void); #endif A...
The most commonly used 'C' Implementation of SSL (OpenSSL) doesn't support parallely operations on it's SSL Session. (i.e. You cannot do a SSL_read & SSL_write) parallely for the same session. Does the Java bases SSL, JSSE support this feature? i.e. For the same SSL Session created using JSSE, can I do read and write parallely on diffe...
Hi, I have created a self signed certificate for my web application using the openssl functions. In the browser when the certificate is viewed there is a field "Public Key" whose value is set to "RSA(2048)". What are the openssl function calls present to retrieve this "public key" field of the certificate from my application ? For e...