Programming :: How To Use Openssl Fips Mode
Aug 18, 2010
I want to use FIPS mode under linux. With openssl-0.9.8o, I typed "./config fipscanisterbuild" and then typed "make". The compile successful. Then I did a test about fips, below is my test code (main.cpp):
#include <iostream>
#include <openssl/ssl.h>
#include <openssl/fips.h>
int main(int argc, char *argv[])
{
[Code]....
View 2 Replies
ADVERTISEMENT
Apr 12, 2011
I know this sounds like a poorly asked question, but I was asked if our Linux systems are running in "FIPS mode". This document [url] says
Approved Mode
The FIPS 1402 Approved Mode of Operation is the operation of the FIPS object module when all requirements of the Security Policy have been met and the software has successfully performed the powerup and self test operation (invocation of the FIPS_mode_set() function call). In this document this Approved Mode is referred to simply as FIPS mode.
Is this the default for OS 11.4? The only place I know that OpenSSL is being used on our systems is with OpenSSH.
View 6 Replies
View Related
May 6, 2011
I need to build an https client in 'C' language on linux platfrom and my app is a multithreaded one...in each thread it need to send a seperate https request to the same server..and receive response.... I used openssl library for this, i am able to send request to server. but when i am trying to read the socket (using SSL_Read) it's closing connection(returning 0 with error code 29).
View 3 Replies
View Related
Mar 3, 2010
How do i customize CPerl mode?And how do i setup everything on i cperl-mode?
How do i install perlnow.el
here the link [URL]...
View 1 Replies
View Related
Aug 30, 2010
Below is a print out of my partition Table from Fdisk, in Cylinder mode, Sector mode, and then in expert mode?
Why in expert mode does it look like Partitions 2 and 3 share the same sector / hd / Cylinders? Is this OK?
Code:
View 3 Replies
View Related
Nov 23, 2010
I have problems,I get this:
milenko@hp6830s:~/mt2ddi$ make mt2ddi
f77 -o -m64 driver.o solve_mt2d_direct.o boem.o rotz.o gebolr.o d2emod.o pobo.o mte.o d2hmod.o gsres.o mth.o z1idu.o h1iud.o phase.o
[code]....
View 4 Replies
View Related
Apr 14, 2011
I have to read files from a linux server. When I copy a file I receivce just a portion of the file I expected if the process generationg ths file is still writing it.
I read the file from a java apllication using SSH/SFTP. How can I detect if the file is still used by the writing process ?
View 4 Replies
View Related
Feb 5, 2009
I add new syscall, and it need copy big data into the buffer specified in user mode. How can i do it? use copy_to_user? or can i use memcpy directly? If i use copy_to_use, is it low efficient?v
View 2 Replies
View Related
Aug 8, 2010
I have a little hardware project and I would like to use the parallel port. I basically want to display status code on top of other custom peripheral on an headless server. I only use output as the display (7 segment) is not part of the device itself. The problem is, the parallel port only have 8 standard I/O pins. I have read somewhere that there is a way to change the mode of the port to enable more data pins using a specification not backward compatible with the "classic" mode (so not enabled by default). I didn't find any other information about this. As I would like to have all 17 non-ground pin to avoid using more circuitry than necessary, how to turn this mode on?
View 3 Replies
View Related
Apr 13, 2010
I was wondering what exactly is protected mode, segmentation and paging? Do you know of any good explanations?
View 14 Replies
View Related
Nov 23, 2010
I want to allow my program to be able to run in DEBUG mode. i.e., I want to be able to run ./program, and I want to be able to run ./program -v to show all the debug output. How do I go about setting up something like that?
View 3 Replies
View Related
Jun 28, 2010
i need C code to get child pids from its parent pid in linux and in kernel mode, is there anything like getpid() or getppid() which works in kernel mode?
View 2 Replies
View Related
Jun 23, 2011
How can I programmatically determine if my python script is being run with a 32 or 64 bit interpreter? Better yet, is there a one-liner I can run that will print out the word size of the current python session?
View 6 Replies
View Related
Jun 2, 2010
changed terminal into raw modecfmakeraw(&termios);After that terminal no more captures CTRL+CIs there a way to enable CTRL+C (to terminate the program) while still have RAW mode?
View 3 Replies
View Related
Mar 3, 2009
I like running sql queries from the command line.
Code:
sqlite3 foo.db "select * from some table"
How can I specify
Code:
.mode column
at the command line?
View 1 Replies
View Related
May 14, 2010
I'm unable to compile ruby 1.9.X and I found out it was related to openssl, although it seems there's a patch available for ruby I don't know how to apply it so I was thinking on downgrading to openssl 0.9.8n
I'm using F13 btw, I'm still posting it here as openssl 1.0.0 was first introduced on F12, the other major distros are still using openssl 0.9.8k so there's no much information on the problem
View 2 Replies
View Related
Jul 27, 2011
I have a weird problem in which I try to use cryptodev in Openssl version 0.9.8g, but then if an error occurs or the system logs out, the version for Openssl rolls back to 0.9.8b.I have also tried reinstalling, but no dice. The version stays 0.9.8b. I am using Intel Tolapai with RedHat 5
View 1 Replies
View Related
Jan 14, 2011
I was upgrading openssl 0.7 to 0.9.81 in my redhat 9 server. I've followed the guideline from here: [url]
Now everything is messed up There's no libcrypto.so in /usr/local/ssl/lib directory. Only libcrypto.a. Neither in /usr/lib or /lib directory. I can't even run scp or wget to download rpm of openssl. Getting libcrypto.so error. I've use locate command to find libcrypto.so. There's none. I've run ./config, make, make test and make install command again in the openssl 0.9.81 source directory. But no luck. No libcrypto.so. This is a production server and the httpd went down.
View 4 Replies
View Related
Apr 1, 2010
I want to recompile Apache in order to be SNI supportive because I need to use ssl named based virtual host:
I referred to the following links:
[URL]
I installed the latest version of openssl which is now openssl-1.0.0 I ran the following commands:
./config enable-tlsext --prefix=/usr/local2 --openssldir=/usr/local2/openssl
make
make test
make install
then to recompile apache with new SNI support I ran the following:
./configure --enable-so --enable-ssl --enable-rewrite --enable-unique-id --with-ssl=/usr/local2/openssl
make
make install
After that when I start Apache: /usr/local/apache2/bin/apachectl -k start I get the following error:
SSLStrictSNIVHostCheck failed; OpenSSL is not built with support for TLS extensions and SNI indication. Refer to the documentation, and build a compatible version of OpenSSL.
View 11 Replies
View Related
Dec 14, 2014
I'm trying to start Chrome in kiosk mode from a systemd service on boot. The 'webserver app' named 'xx' in the samples launches but chromium never comes up.
xx.service :
Code: Select all[Unit]
Description=xx Service
After=syslog.target
[Service]
Environment="DISPLAY=:0.0"
Type=forking
WorkingDirectory=/usr/bin/xx/
ExecStart=/usr/bin/xx/xx
ExecStartPost=/usr/local/xx/chromium.sh
Restart=on-abort
[Install]
WantedBy=multi-user.target
chromium.sh
Code: Select allchromium-browser --kiosk http://xx-01.local:8081 &
View 1 Replies
View Related
Dec 8, 2010
I have something like the following in my expect script:
Code:
interact {
-nobuffer -re {^s
} {
[code]....
I have put the "^" anchor to match only those pattern that does not have anything before "s" e.g.
1.when I type "s" followed by "enter" key it should match.
2.if I type something like "chess" followed by "enter" key it shouldn't match. the second case is also being matched by the regular expression I have in my code.
View 4 Replies
View Related
May 3, 2011
In user mode [non-root] linux machine, tried to bind a socket by using a"ioctl(iInterfaceSocket, SIOCSIFADDR, &stCommand)". I am getting error 13 -> Permission denied because of user mode. If change from usermode to kernel mode everything works fine.I need to bind the socket in user mode only, please suggest solution for the abovewhile explaining the above,
View 2 Replies
View Related
Jan 8, 2011
I am trying to get openssl to verify a certificate. I will walk you through what I have done so far.
1. openssl genrsa -des3 -out connect.mydomain.com.key 2048
2. openssl req -new -key connect.mydomain.com.key -out connect.mydomain.com.csr
3. Bought an SSL from GoDaddy.
4. Submitted my CSR
5. Downloaded sf_bundle.crt (CA File I presume)
6. Downloaded connect.mydomain.com.crt
Now I can do the following: [root@server tls]# openssl verify -CAfile sf_bundle.crt connect.mydomain.com.crt
connect.mydomain.com.crt: OK This is specifying the CAfile.
[Code]...
View 2 Replies
View Related
Aug 17, 2011
in order to share profiles between a Mahara and a Moodle installation I need to get OpenSSL working.
I've got OpenSSL installed on the server and followed this tutorial. However, I still get an error message saying that either OpenSSL or PHPs support for OpenSSL are missing: Could not generate a new SSL key. Are you sure that both openssl and the PHP module for openssl are installed on this machine?
What would be the next steps to actually set up the Apache server and PHP so they can use OpenSSL? (I've already specified the path to my caconfig.cnf file in Maharas config.php)
View 4 Replies
View Related
Aug 10, 2011
I am a new administrator and am running SLES 11 on a VM. I have openssl installed, but when I attempt to compile an add-on module to Nginx I get the following list of errors:
[Code]...
View 3 Replies
View Related
Oct 7, 2010
I've been googling around and have had a bit of a hard time trying to find help with this little issue. Managed to install CouchDB on the server at work after doing some fiddling due to not having spidermonkey availableAnyways, rt of this involved updating openssl.fter doing this however all hell broke loose.It seems a lot of programs needed the old version- I keep getting: error while loading shared libraries: libssl.so.0.9.8: cannot open shared object file: No such file or directory
I did a search:
>locate libssl.so.0.9.8
And it returned:
[code]...
View 9 Replies
View Related
Jul 14, 2010
I got an task assigned to me, i have to create new ssl key, csr & crt files using openssl. But the file name must be of this kind (*.aaa.xx.aa). When I tried the file name starting with * its not accepting the file name. But when I tried with the file name starting with . its getting generated.
View 1 Replies
View Related
Jan 18, 2011
I inherited a project that someone built in lampp, and I need create new SSL certs.
So I go to do so and it says that OpenSSL is not installed and to apt-get and install it.(Ubuntu by the way)
So before I did so, I wondered if it would cause any problems...since it was supposed to be part of the lampp stack.
View 3 Replies
View Related
Apr 27, 2010
I have problem in installing openvpn I get this error:
[Code]....
View 4 Replies
View Related
May 9, 2011
How to change the complex number like -123.45e67 in to real number.
with command of awk print
View 1 Replies
View Related