From owner-freebsd-security  Thu Aug  3  0:53:35 2000
Delivered-To: freebsd-security@freebsd.org
Received: from www.kpi.com.au (www.kpi.com.au [203.39.132.210])
	by hub.freebsd.org (Postfix) with ESMTP
	id A335237B7AA; Thu,  3 Aug 2000 00:53:26 -0700 (PDT)
	(envelope-from shevlandj@kpi.com.au)
Received: from grail (www.kpi.com.au [203.39.132.210])
	by www.kpi.com.au (8.9.3/8.9.3) with SMTP id RAA38844;
	Thu, 3 Aug 2000 17:56:42 +1000 (EST)
	(envelope-from shevlandj@kpi.com.au)
From: "Joe Shevland" <shevlandj@kpi.com.au>
To: "Kris Kennaway" <kris@hub.freebsd.org>,
	"Neil Blakey-Milner" <nbm@mithrandr.moria.org>
Cc: "Siobhan Patricia Lynch" <trish@bsdunix.net>,
	"Jeroen Ruigrok/Asmodai" <asmodai@wxs.nl>,
	"Robert Watson" <rwatson@FreeBSD.ORG>,
	<freebsd-security@FreeBSD.ORG>, <ogud@tislabs.com>
Subject: RE: MFC'ing OpenSSL 0.9.5a?
Date: Thu, 3 Aug 2000 17:56:58 +1000
Message-ID: <MJEMLFCFPOPOFFFLIIDGKENLCCAA.shevlandj@kpi.com.au>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0)
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400
In-Reply-To: <Pine.BSF.4.21.0008030041150.13929-100000@hub.freebsd.org>
Importance: Normal
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

That's interesting; I did experience this problem (apols!) but I put it =
down to IE's inability to handle 128-bit certificates... when I upgraded =
IE using the Mickeysoft update patch everything worked again. Hence I =
pointed the finger at IE... perhaps wrongly?

Cheers,
Joe

>-----Original Message-----
>From: Kris Kennaway [mailto:kris@hub.freebsd.org]
>Sent: Thursday, 3 August 2000 5:42 PM
>To: Neil Blakey-Milner
>Cc: Joe Shevland; Siobhan Patricia Lynch; Jeroen Ruigrok/Asmodai; =
Robert
>Watson; freebsd-security@FreeBSD.ORG; ogud@tislabs.com
>Subject: Re: MFC'ing OpenSSL 0.9.5a?
>
>
>On Thu, 3 Aug 2000, Neil Blakey-Milner wrote:
>
>> On Thu 2000-08-03 (13:15), Joe Shevland wrote:
>> > I guess its worth noting that modssl is different to Apache-SSL? =
We're
>> > using Apache-SSL (1.3.12) and haven't seen any problems at all =
(both
>> > with 0.9.5a and over the last couple of years, perhaps been lucky =
:)
>>=20
>> How often do you generate certificates with it?  I've had a number of
>> complaints about 0.9.5a generating certificates that Internet =
Explorer
>> just can't comprehend.
>
>In fact that's precisely the opposite problem we're trying to =
investigate
>here..I haven't heard that complaint.
>
>Kris
>
>--
>In God we Trust -- all others must submit an X.509 certificate.
>    -- Charles Forsythe <forsythe@alum.mit.edu>
>
>
>



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message