Tag: openssl

OpenSSL and Trusted System Certifcates

So I already know how to specify locations for trusted certificates using SSL_CTX_load_verify_locations(). Now the documentation says the following: SSL_CTX_load_verify_locations() specifies the locations for ctx, at which CA certificates for verification purposes are located. The certificates available via CAfile and CApath are trusted. And also says: When looking up CA certificates, the OpenSSL library will first search the certificates in

Script to generate MD5 hash with openssl

bash linux openssl passwd

I’m trying to generate some MD5 hashes with openssl for use with chpasswd Ex. CSV file: Script I created: However, if I take any MD5 generated from this script and try to use it with chpasswd it does not work. This password will fail If I try to do this without the script by hand it works: Answer Your CSV

How can I split a CA certificate bundle into separate files?

linux openssl ssl

I’m working with OpenSSL and need a sane default list of CAs. I’m using Mozilla’s list of trusted CAs, as bundled by cURL. However, I need to split this bundle of CA certs, because the OpenSSL documentation says: If CApath is not NULL, it points to a directory containing CA certificates in PEM format. The files each contain one CA

How to send a string to server using s_client

linux openssl

How to use s_client of openssl to send a short string to the server? I have read the s_client manual but didn’t find any usable flags. Or is there any other ways to achieve this? Answer Does anyone know how to use s_client of openssl to send a short string to the server? You can echo it in. Below, I

How to upgrade OpenSSL in CentOS 6.5 / Linux / Unix from source?

centos linux openssl security ssl

How do I upgrade OpenSSL in CentOS 6.5? I have used these commands, but nothings happens: After using this command, I get the old version Answer Try this config line instead to overwrite the default. It installs to prefix /usr/local/ssl by default in your setup when you leave off the prefix. You probably have “/usr/local/ssl/bin/openssl” instead of overwriting /usr/bin/openssl. You

Kernel Modul and SSL

kernel-module linux linux-kernel openssl

at the moment I am working on the kernel module of ccn-lite (http://www.ccn-lite.net/). For that I need some security functionality (sha1 and public/private key authentificaton). For the user-space I use the openssl library, but I cannot use a library in the kernel module. It is also hard to pick the functions out of OpenSSL and add them to the kernel