... Look at the SSLftp package by Tim Hudson (tjh@...). YOu can get it from ftp://ftp.psy.uq.oz.au/pub/Crypto/SSLapps/ read you later - Holger Reif ...
Holger Reif
Holger.Reif@...
Jan 2, 1997 8:08 am
3509
help...
Glenn.Marshall@SPCMAIL
grm@...
Jan 2, 1997 1:50 pm
3510
subscribe ssl-talk...
Mercedes Soto Rodrmguez
mersoto@...
Jan 2, 1997 6:25 pm
3511
remove...
DARK ANGEL
vkhalsa@...
Jan 2, 1997 11:21 pm
3512
It seems the test certificate from consensus for SSLREF3 has expired. This is causing me to get a Error -6986 [X509CertChainInvalidErr] Is there a new test...
Chris Krebs
ckrebs@...
Jan 3, 1997 4:30 pm
3513
... Make sure that your IIS server has a certificate from a CA that is recognized by IE. If not, IE will reject the certificate. Try Netscape Navigator and see...
Robert J. Kohlhepp
rkohlhepp@...
Jan 3, 1997 6:20 pm
3514
I would like to remove the encryption from a certificate I made and signed with the SSLeay suite. The user-level documentation is a little sparse ;-) I built...
Hakan Tandogan
hakan@...
Jan 3, 1997 6:33 pm
3515
remove...
Hilton I. Hofman
hilton@...
Jan 3, 1997 9:55 pm
3516
Where do I get information on cost of SSL. We have a website and are looking to offer secure transactions. Thanks...
Lex van Arem
vanarem@...
Jan 3, 1997 11:50 pm
3517
... Any server supporting SSL can be used. Generally, you configure an https (http with SSL) process. All Netscape servers support SSL. You don't need to...
Eric Greenberg
ericg@...
Jan 3, 1997 11:57 pm
3518
... Here are new SSLRef 3.0 certificates for Q1 '97. They are good for three months. NOTE: Both the Certificate Authority certificate and the test certificate ...
Christopher Allen
ChristopherA@...
Jan 4, 1997 2:36 am
3519
... There is some information on this topic in the SSL-Talk FAQ <http://www.consensus.com/security/ssl-talk-faq.html> in the certificate related questions...
Christopher Allen
ChristopherA@...
Jan 4, 1997 3:00 am
3520
... This correct, VeriSign no longer issues certificates with wild-card characters (see the answer in the SSL-Talk List FAQ ...
Christopher Allen
ChristopherA@...
Jan 4, 1997 3:00 am
3521
... FWIW, Thawte does issue wildcard certs as long as the organisation in question controls all the hosts underneath the domain. So *.com is out, but...
Mark Shuttleworth
marks@...
Jan 4, 1997 9:35 am
3522
Hiya http://196.13.232.5/ This one's probably best handled by a reverse lookup and pattern match. http://domain.com/ Shouldn't be treated like *.domain.com,...
Mark Shuttleworth
marks@...
Jan 4, 1997 9:53 am
3523
I've written up an attack on SSL server authentication at http://www.iol.ie/~fod/sslpaper/sslpaper.htm As far as I am aware, this attack hasn't been written...
Frank O'Dwyer
fod@...
Jan 4, 1997 1:13 pm
3524
Ed Felten of Princeton presented something similar at the Dimacs Network Threats workshop in November 96. ... -- "It is seldom that liberty of any kind is lost...
Adam Shostack
adam@...
Jan 4, 1997 3:19 pm
3525
... Jim Truitt just posted a link for their paper, which I've linked off my page. Although it incorporates most of the same ground as my stuff, I think I have...
Frank O'Dwyer
fod@...
Jan 4, 1997 4:06 pm
3526
... Regarding the following: Note, however, none of these regular expression/pattern matching choices are accepted by VeriSign. In the past they have accepted ...
Kevin Steves
stevesk@...
Jan 4, 1997 9:18 pm
3527
... Or, not at all. Anyone who includes an IP address in a URL deserves what they get. ... I believe this works by providing several virtual IP adresses that ...
Tom Weinstein
tomw@...
Jan 5, 1997 3:52 am
3528
... That's not how HTTP/1.1 works, Tom. -- Sameer Parekh Voice: 510-986-8770 President FAX: 510-986-8777 C2Net C2Net is having a party:...
sameer
sameer@...
Jan 5, 1997 4:04 am
3529
On Sat, 4 Jan 1997, Frank O'Dwyer wrote: Happy New Year, An interesting read. The main problem with this type of 'attack' is in the difficulty of...
Terry Ford
tford@...
Jan 5, 1997 4:53 am
3530
... In HTTP/1.1 multiple hostnames resolve to a single IP address. The ambiguity is resolved by the Host header in the request. This mechanism is clearly ...
Ben Laurie
ben@...
Jan 5, 1997 1:16 pm
3531
... Not impossible. I think that SSLv3 session renegotiation holds an answer. But it does require some thought rather than a quick fix. -- Mark Shuttleworth ...
Mark Shuttleworth
marks@...
Jan 5, 1997 2:32 pm
3532
Mark, I tend to agree with you here. I love these kinds of challenges. ... Regards, -- Jeffrey A. Williams DIR. Internet Network Eng/SR. Java Development Eng....
Jeff Williams
jwkckid1@...
Jan 5, 1997 2:43 pm
3533
... True enough, but not doable without cooperation from the browsers, of course. Cheers, Ben. -- Ben Laurie Phone: +44 (181) 994 6435 Email:...
Ben Laurie
ben@...
Jan 5, 1997 3:10 pm
3534
Hi, I am not able to download SSLREF 3.0 from the site mentioned below. Can anyone point out the right address? Thanks, Giri...
symbols2@...
Jan 6, 1997 5:25 am
3535
[ ssl-users@... would have been the correct mailing list to ask this question. Since the doc is sparse you should have found it ;-) ] ... I suppose not...
Holger Reif
Holger.Reif@...
Jan 6, 1997 7:39 am
3536
I'm researching methods of securing a Client/Server application with the Server running on IBM OS/390 and the clients running on OS/2 and WIN95 and...
Having problems with message search?
Fill out this form to ensure your group is one of the first to be migrated to the new message search system.
