Comments on: OpenSSL: SSL Client/Server Example

By: Eugene

Eugene — Tue, 15 Sep 2009 18:03:20 +0000

Thanks a lot – your SW rocks.
Looks like certificate on client side is mandatory – can it be changed to make it optional?

By: Openssl: Ssl Client/Server Example | Th30z - Coding on the Fly

Openssl: Ssl Client/Server Example | Th30z - Coding on the Fly — Thu, 03 Sep 2009 04:14:01 +0000

[...] AUTHORITY Certificate : openssl genrsa -des3 -out ca.key 1024 openssl req -new -x509 -key ca.key -out ca.crt – SERVER Certificate openssl genrsa -des3 -out server.key 1024 openssl req -new -key server.key -out server.csr openssl x509 …Continue Reading… [...]

By: Ajinkya

Ajinkya — Thu, 23 Jul 2009 01:50:42 +0000

Hi Matteo,

The code seemed to work only if I generated the rsa key for each (ca, server and client) without encryption (i.e. without -des3 in the command). Anyways, things look quite good for me now. Thank you so much for your help.

By: Ajinkya

Ajinkya — Wed, 22 Jul 2009 21:44:50 +0000

Another quick question. Did you finally create a PKCS12 file from the private key and the certificate?
Thanks.

By: Ajinkya

Ajinkya — Wed, 22 Jul 2009 14:07:49 +0000

Thanks Matteo. The reason I requested you to do so is because, when I create a certificate using the commands above, I end up getting an error that says bad decrypt on server side. Which version of openssl are you using?

By: Matteo Bertozzi

Matteo Bertozzi — Wed, 22 Jul 2009 06:16:53 +0000

I’ll re-update the sources as soon as I can (but you’ve to wait a couple of days) meanwhile you can regenerate the Certificates following the openssl commands at the end of the post.

By: Ajinkya

Ajinkya — Wed, 22 Jul 2009 05:23:27 +0000

Can you please recreate the keys and certificates and update the source code? The certificates seem to have expired. Thanks