Hello! I can use s_client to connect and test my https site, but has anybody figured out how to connect into https site with s_client via firewall proxy?...
Maert Laak
maert@...
Jul 1, 1998 12:35 pm
7898
** Proprietary ** ** High Priority **...
Marge E. Rintoul
mrintoul@...
Jul 1, 1998 1:36 pm
7899
When a user cannot be verified by a user file while using SSLFakeBasicAuth, the username and password dialog box comes up by default. Is there anyway around...
James Birchfield
jsrbirch@...
Jul 2, 1998 2:16 am
7900
Hello, I would like to configure my preferences in ciphers in my SSLeay server implementation. To do that I use SSL_CTX_set_cipher_list (SSL_CTX *ctx, char...
Nathalie Le Berre
NATHALIE.LE-BERRE@...
Jul 3, 1998 10:51 am
7901
... Hash: SHA1 Network Associates, Inc. is seeking Software Engineers to work on the next generation of Pretty Good Privacy client and server software. We are...
Will Price
wprice@...
Jul 6, 1998 10:57 pm
7902
Everyone, I have been comparing the differences and trade-offs between SSLV2 and SSLV3. One item that I have recieved mixed responses on is the requirement of...
fishin
fishin11@...
Jul 7, 1998 4:49 pm
7903
... No. ... Yes. -- Eric Murray Chief Security Scientist N*Able Technologies www.nabletech.com (email: ericm at lne.com or nabletech.com)...
Eric Murray
ericm@...
Jul 7, 1998 5:00 pm
7904
... The client certificate functionnality is an option : a specific message from the server must be sent if it demands a client certificate. I am also...
Marc Brette
Marc.Brette@...
Jul 7, 1998 5:26 pm
7905
A client certificate is not required in SSLv3. It is at the discretion of the server whether to request one or not. In response to a server certificate...
Peter Drake
PDrake@...
Jul 7, 1998 5:26 pm
7906
According to the CERT advisory "A sophisticated intruder may be able to use the vulnerability in PKCS#1 to recover information from an SSL-encrypted session." ...
Maurizio Oliva
oliva@...
Jul 7, 1998 6:49 pm
7907
Can anyone confirm that the use of an optional client certificate works? Ideally with IIS (any version). Around 2 years ago I set up a test using IIS3 (and the...
Mark Clouden
mclouden@...
Jul 7, 1998 7:48 pm
7908
A researcher at Bell Labs has published a report that describes a method of attacking certain SSL-based servers (including most HTTPS (www commerce) servers)...
Andrew Gillis
andrewg@...
Jul 7, 1998 7:52 pm
7909
Does any one know if you can use SSL for encryption between Win NT/IIS Web Server to a Win NT/SQL Server? If so, where is there good place to find...
McMurtrey, Frank T
Frank.McMurtrey@...
Jul 7, 1998 8:16 pm
7910
John - Thank you for your rapid response. The challenge that we have is that this is for a Intranet environment. We need to protect the data from our common...
McMurtrey, Frank T
Frank.McMurtrey@...
Jul 7, 1998 9:18 pm
7911
... Optional client certs work in Apache-SSL. Cheers, Ben. -- Ben Laurie |Phone: +44 (181) 735 0686| Apache Group member Freelance Consultant |Fax:...
Ben Laurie
ben@...
Jul 7, 1998 9:31 pm
7912
sql server does not support ssl. however, if you use the sql server multi-protocol provider you can elect to use a secure channel. this will use ntlm & rc4 to...
Michael Howard
mikehow@...
Jul 8, 1998 12:09 am
7913
I will be out of the office from 07/06/98 until 07/13/98. I will respond to your message when I return....
Keith.Corder@...
Jul 8, 1998 6:15 am
7914
i would not leave auth ports open to the internet, besides, ntlm requires a persistant connection during the challenge/response phase so it won't work through...
Michael Howard
mikehow@...
Jul 8, 1998 5:23 pm
7915
What about using a Firewall with three NICs. Would this help overcome this issue? Thanks, Jonathon ... From: Michael Howard <mikehow@...> To: John W....
Jonathon Orbeton
jorbeton@...
Jul 8, 1998 7:20 pm
7916
Michael, John, and Jonathon thank you for your rapid responses. I found this Microsoft knowledge base article (Q176377) and I think it says that NTLM may not...
McMurtrey, Frank T
Frank.McMurtrey@...
Jul 8, 1998 11:29 pm
7917
Greetings, are there object identifiers for the IDEA algorithm in its different modes of operation (ECB, CBC, ...)? Thanks in advance, Patrick...
Patrick Eisenacher
eisenach@...
Jul 9, 1998 12:07 am
7918
unsubscribe...
John Patrick R. Kinta...
jrkintanar@...
Jul 8, 1998 11:55 pm
7919
Hi, Hope I've found the right place for this question: I have a problem with SSLeay v 0.6.4, where I'm testing the use of client certificates in my server. I...
Flemming Jans
fj@...
Jul 9, 1998 8:28 am
7920
I can't seem to find information on what export restrictions are placed on browsers and web servers or perhaps they are exempt. For example, on netscapes home...
paul soohoo
psoohoo@...
Jul 9, 1998 6:03 pm
7921
... Try following all the selections screens to choose OS, language and version. Eventually you get to a screen which has a check-box which you have to check...
Eric Murray
ericm@...
Jul 9, 1998 6:43 pm
7922
... I'd suggest you contact the BXA for advice on this. They have a web site at: http://www.bxa.doc.gov/ Their web site has a PDF document that contains the...
V. Alex Brennen
alexb@...
Jul 9, 1998 6:45 pm
7923
I read somewhere that the Congress had just opened up the export resrictions for banks and other such orgs. If this is just concern for Iraq using 128-bit,...
Jonathon Orbeton
jorbeton@...
Jul 9, 1998 6:58 pm
7924
I just went to the netscape site and tested downloading 4.05. It does not ask you anything about whether you are domestic or international. Even if it did it...
paul soohoo
psoohoo@...
Jul 9, 1998 7:23 pm
7925
The change is very narrow. It allows browsers with high encryption to be exported, but security can only be activated by host certificates that have been...
Jim Rush
jimrush@...
Jul 9, 1998 7:59 pm
7926
... The version of the Netscape browser you get by default uses 40 bit keys for SSL which is often allowed for export. You have to go through special hoops to...
Having problems with message search?
Fill out this form to ensure your group is one of the first to be migrated to the new message search system.
