From owner-freebsd-security@FreeBSD.ORG Fri Apr 1 21:01:10 2011 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 69916106564A for ; Fri, 1 Apr 2011 21:01:10 +0000 (UTC) (envelope-from leccine@gmail.com) Received: from mail-bw0-f54.google.com (mail-bw0-f54.google.com [209.85.214.54]) by mx1.freebsd.org (Postfix) with ESMTP id BF0368FC1D for ; Fri, 1 Apr 2011 21:01:09 +0000 (UTC) Received: by bwz12 with SMTP id 12so3440809bwz.13 for ; Fri, 01 Apr 2011 14:01:08 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=7aFJ+NvMs2UUYHfHgfoJ24ly/s89mQoaKxiIjAF8DN0=; b=AKQIqp9OooEzqhxZ6ID9pMmUv+r81IJnh+doOXI2MfKOc5Ouizu4K2IFPP7qu8iCNH l//EPsK1Lf/+Np6K6T2mDS60afAxoH6ILVsi2tXJI1cts9wuuPQvMWtmvjOAhMREH2Zi xdm30mBbFBHt7P3rBsf0as0fN/XZx2y2T/ynY= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; b=ZpcYU/JBnQqZWZYscyD4lq5wv0XnFqJJvQrwiqRZogPhv/63yUDufsXHESAoXQAVAH 93ggViw5tJZrF2QJUZwMAvnOMVywqb0qx1eXXai5xUl2K/I9zb9dRV94vRnOObR8WAPw u6xubojZfxyY6ZBFbP8Rxe0WLLEYmbOwVfTSE= MIME-Version: 1.0 Received: by 10.204.74.93 with SMTP id t29mr4071078bkj.150.1301691668683; Fri, 01 Apr 2011 14:01:08 -0700 (PDT) Received: by 10.204.62.13 with HTTP; Fri, 1 Apr 2011 14:01:08 -0700 (PDT) In-Reply-To: <4D963C23.4080100@FreeBSD.org> References: <20110401153300.GA85392@guilt.hydra> <4D9639B0.1070302@FreeBSD.org> <4D963C23.4080100@FreeBSD.org> Date: Fri, 1 Apr 2011 22:01:08 +0100 Message-ID: From: =?UTF-8?Q?Istv=C3=A1n?= To: Doug Barton Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-security Subject: Re: SSL is broken on FreeBSD X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 01 Apr 2011 21:01:10 -0000 Executing the same command: openssl s_client -connect 72.21.203.148:443 < /dev/null | sed -ne /-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p |openssl x509 -noout -subject -dates The end goal is to get this working. I am going to fix it whenever I have few hours time to waste :) On Fri, Apr 1, 2011 at 9:57 PM, Doug Barton wrote: > On 4/1/2011 1:52 PM, Istv=C3=A1n wrote: > >> well i would argue with that, on Linux it was possible to validate the >> certs >> what X company is using, on FreeBSD it was not. >> > > Perhaps if you can describe the process that you go through on Linux to d= o > this, we can help you accomplish the same goal using FreeBSD. What I'm > getting at is that if we can focus on, "Here is the end goal that I would > like to achieve" we may be able to help each other out. :) > > > Doug > > > -- > > Nothin' ever doesn't change, but nothin' changes much. > -- OK Go > > Breadth of IT experience, and depth of knowledge in the DNS. > Yours for the right price. :) http://SupersetSolutions.com/ > > --=20 the sun shines for all http://wperf.com/