From owner-freebsd-current  Sat May  6 18:44:55 2000
Delivered-To: freebsd-current@freebsd.org
Received: from mail.hiwaay.net (fly.HiWAAY.net [208.147.154.56])
	by hub.freebsd.org (Postfix) with ESMTP id 33F3137B8CB
	for <current@FreeBSD.ORG>; Sat,  6 May 2000 18:44:48 -0700 (PDT)
	(envelope-from sprice@hiwaay.net)
Received: from localhost (sprice@localhost)
	by mail.hiwaay.net (8.10.1/8.10.1) with ESMTP id e471iiG06079;
	Sat, 6 May 2000 20:44:44 -0500 (CDT)
Date: Sat, 6 May 2000 20:44:44 -0500 (CDT)
From: Steve Price <sprice@hiwaay.net>
To: Garrett Wollman <wollman@khavrinen.lcs.mit.edu>
Cc: Forrest Aldrich <forrie@navipath.com>, current@FreeBSD.ORG
Subject: Re: RSA decrypt problems
In-Reply-To: <200005070111.VAA96862@khavrinen.lcs.mit.edu>
Message-ID: <Pine.OSF.4.21.0005062038140.24280-100000@fly.HiWAAY.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-current@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Sat, 6 May 2000, Garrett Wollman wrote:

# I've had this problem with recent values of OpenSSL since last
# November.  I haven't gotten around to playing with permutations of the
# openssl.cnf file yet.  I tried my site certificate on various versions
# of Netscape and Exploder, and all of them failed in a similar manner,
# but `openssl s_client' worked just fine, and all the other clients
# failed identically against `openssl s_server'.  I sent a note about
# this to the OpenSSL mailing-list, and did not receive a single
# relevant response.

So what do you use as a workaround?  The openssl port?  The old
SSLeay port?  Would using DSA instead of RSA make matters better?

-steve



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message