You can subscribe to this list here.
2004 |
Jan
|
Feb
(1) |
Mar
|
Apr
|
May
(3) |
Jun
|
Jul
(1) |
Aug
(3) |
Sep
(1) |
Oct
|
Nov
|
Dec
|
---|---|---|---|---|---|---|---|---|---|---|---|---|
2006 |
Jan
|
Feb
(3) |
Mar
(2) |
Apr
(5) |
May
|
Jun
(4) |
Jul
(2) |
Aug
|
Sep
|
Oct
|
Nov
(6) |
Dec
(2) |
2007 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
(1) |
Aug
|
Sep
|
Oct
|
Nov
|
Dec
(3) |
2008 |
Jan
(1) |
Feb
(1) |
Mar
(2) |
Apr
(4) |
May
(1) |
Jun
(1) |
Jul
(5) |
Aug
(2) |
Sep
(12) |
Oct
(7) |
Nov
|
Dec
(38) |
2009 |
Jan
(3) |
Feb
(19) |
Mar
(12) |
Apr
(19) |
May
(42) |
Jun
(17) |
Jul
(22) |
Aug
(5) |
Sep
(4) |
Oct
|
Nov
(1) |
Dec
(9) |
2010 |
Jan
(3) |
Feb
(5) |
Mar
(1) |
Apr
(2) |
May
(4) |
Jun
(1) |
Jul
(5) |
Aug
(2) |
Sep
(1) |
Oct
|
Nov
|
Dec
|
2011 |
Jan
|
Feb
(1) |
Mar
|
Apr
|
May
(1) |
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
2012 |
Jan
|
Feb
(2) |
Mar
|
Apr
|
May
|
Jun
(2) |
Jul
|
Aug
|
Sep
(1) |
Oct
|
Nov
|
Dec
|
2013 |
Jan
|
Feb
|
Mar
|
Apr
|
May
(1) |
Jun
(3) |
Jul
(1) |
Aug
(1) |
Sep
(1) |
Oct
|
Nov
(2) |
Dec
(1) |
2014 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
(1) |
Nov
(1) |
Dec
|
2015 |
Jan
(2) |
Feb
|
Mar
|
Apr
|
May
(4) |
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
2016 |
Jan
|
Feb
(1) |
Mar
|
Apr
|
May
|
Jun
|
Jul
(1) |
Aug
(1) |
Sep
|
Oct
(1) |
Nov
|
Dec
|
2017 |
Jan
(1) |
Feb
(1) |
Mar
(1) |
Apr
(1) |
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
2018 |
Jan
|
Feb
(5) |
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
2019 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
(1) |
2020 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
(1) |
Nov
|
Dec
|
2022 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
(1) |
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
From: Carl-Clemens E. <po...@eb...> - 2022-06-07 13:08:32
|
Hello list, I saw, that use_sha256_hash() take no effect for encryption. I looked at the XSUB-Definition (https://metacpan.org/release/TODDR/Crypt-OpenSSL-RSA-0.32/source/RSA.xs) of encrypt and saw, that the "whole object" inclusive hashMode is passed over. Whats about usage of SHA256 for Encryption. Is it supported? Best. Carl-Clemens |
From: <272...@qq...> - 2019-12-01 03:21:13
|
I am used to generate keys with OpenSSL via shell, this way: ---------------------------------------------------------------------------- my $ssk="a29bRwoA73xZGeBc"; openssl req -new -newkey rsa:2048 -nodes -keyout "/etc/ssl/$ssk.key" -out "/etc/ssl/$ssk.csr" openssl x509 -req -days 365 -in "/etc/ssl/$ssk.csr" -signkey "/etc/ssl/$ssk.key" -out "/etc/ssl/$ssk.crt" ---------------------------------------------------------------------------- Now I need to perform this action via PERL, but I have no idea if the below code can at least implement the 1st line: ---------------------------------------------------------------------------- my $ssk="a29bRwoA73xZGeBc"; # I didn't use Crypt::OpenSSL::Random, as I didn't found where it comes to action use Crypt::OpenSSL::RSA; my $rsa=Crypt::OpenSSL::RSA->generate_key(2048); my $rsa_pub=Crypt::OpenSSL::RSA->new_public_key($rsa->get_public_key_x509_string()); my $rsa_prv=Crypt::OpenSSL::RSA->new_private_key($rsa->get_private_key_string()); my $cipher=$rsa->encrypt($rsa_pub); my $plain=$rsa->encrypt($cipher); my $sigt=$rsa_prv->sign($plain); # This seems to be part of the 2nd line in shell code, but maybe I am wrong. unless($rsa->verify($plain,$sigt)) { die "Failed to create keys"; } # Here is the issue: &SaveFile("/etc/ssl/$ssk.key",$plain,0400); # Is it correct? &SaveFile("/etc/ssl/$ssk.csr",$cipher,0400); # How about this? # How do I proceed to implement the 2nd line of the shell code? ---------------------------------------------------------------------------- Note that the part of Crypt::OpenSSL::Random and saving to key files is not docmented... Thanks a lot |
From: Rebecca W <fin...@ho...> - 2018-02-20 01:36:21
|
Good Day, I am Mrs. Rebecca W. How are you and your lovely family and I am hopping my message meets you successful. I discovered a huge amount of the non-residential account at our bank and am desperately need help receive this money in your local bank account in your country for any business or investment. If you are able and willing to help get these funds, I will give more details as soon as I receive your positive response to this opportunity. Thank you very much. Regards, Mrs. Rebecca Williams Standard Chartered Bank |
From: Rebecca W <fin...@ho...> - 2018-02-11 00:09:10
|
Hello, I urgently need your assistance to help transfer some money out of the country through any interested partner who will remain as a foreign investor to receive this money in their country as a loan to invest. Regards, Mrs. Rebecca W Standard Chartered Bank Head office: Kwabena Avenue, Accra P.O. Box 72802, Accra Mobile: + 233265259335 |
From: Rebecca W <fin...@gm...> - 2018-02-07 22:41:12
|
Hello I urgently need your assistance to help transfer some money out of the country through any interested partner who will remain as a foreign investor to receive this money in their country as a loan to invest. Regards, Mrs. Rebecca W Standard Chartered Bank ***** Halo Saya amat memerlukan bantuan anda untuk membantu memindahkan wang keluar negara melalui mana-mana rakan yang berminat yang akan kekal sebagai pelabur asing untuk menerima wang ini di negara mereka sebagai pinjaman untuk melabur. Salam, Puan Rebecca W Standard Chartered Bank |
From: Rebecca W <fin...@ho...> - 2018-02-03 01:54:53
|
Hello, I urgently need your assistance to help transfer some money out of the country through any interested partner who will remain as a foreign investor to receive this money in their country as a loan to invest. Regards, Mrs. Rebecca W Standard Chartered Bank ---- Hello Saya amat memerlukan bantuan anda untuk membantu memindahkan wang keluar negara melalui mana-mana rakan yang berminat yang akan kekal sebagai pelabur asing untuk menerima wang ini di negara mereka sebagai pinjaman untuk melabur. Salam, Puan Rebecca W Standard Chartered Bank |
From: Rebecca W <fin...@ho...> - 2018-02-02 16:14:12
|
Hello, I urgently need your assistance to help transfer some money out of the country through any interested partner who will remain as a foreign investor to receive this money in their country as a loan to invest. Regards, Mrs. Rebecca W Standard Chartered Bank ---- Hello Saya amat memerlukan bantuan anda untuk membantu memindahkan wang keluar negara melalui mana-mana rakan yang berminat yang akan kekal sebagai pelabur asing untuk menerima wang ini di negara mereka sebagai pinjaman untuk melabur. Salam, Puan Rebecca W Standard Chartered Bank |
From: Borodin O. <bo...@un...> - 2017-02-01 22:00:13
|
Hi! I wrote little patches for reading/writing encrypted or unencrypted RSA keys with Crypt::OpenSSL::RSA. Patches in attachment. Extensions can be seen from the example below. Found little limitation: for ciphers need module Crypt::OpenSSL::CA =( In general, changes in the unit works well in my programs. If next test shows a good result then we can make changes in the package? $ cat rsa-openssl.pl #!/usr/local/bin/perl use Crypt::OpenSSL::CA; use Crypt::OpenSSL::Random; use Crypt::OpenSSL::RSA; $pemkey = <<EOF; -----BEGIN RSA PRIVATE KEY----- Proc-Type: 4,ENCRYPTED DEK-Info: AES-256-CBC,26A1EA21DC1B67BC94B1C43932110101 F23zd98vPLg5SQcfvSFru1u0cVuBpsr+zKLySo3JxEf1JHYzJk6Y2LJU57+uZAJ/ U3VfK04mXu/MGuunw97ThwkCCxnzjWdHuE/SYTo/e4OpZbPn0miz8I5GeS/McP4i t6ya/IKmoVMBLLEP2xpTguRuaMUlh+RBFiR/rIMaUOQvHAK6lBTM1/GNAMdr4ysg c4CYztLH4DKY2nvo/p/bJwOLIx4uLzBjGlohwu77we6l+FXziXZPN98HpjxfIiYC ztBFaeeNDJWwFQUqZgNmzYukEPIPlW+NWShk4CFSOJ6jz8cDPMkT2hOdz4GaebRQ nRy1y+kNtz6f/tQmxwybM7295bWWxg2xL0Ho5IGrF0BfsATESxWD4zD0vJO7jmaO MX54l6n8EC/4goVTBmZpdyJ9YSozx8rMKih+sLl69NrvruQ1Yio+zpToLDuNOV1W oPVy+JAXQWI/c5QEDd85FZQoxJU3cY23E49WFEOy25gBYXNPMF6Vyv4x7XIs2C1f Z1lKaFy1uuRgAq9BG7qVVDm4ZHANtE90pbpi4CjUvuedpCjulqlB5tdazPhiwpQI Xk3XSFzOUXCsX19pPH184OJ8HYT45s8mEav24WnNo5H2OphkE9Lb5E+wEBi6Hbbz nL7FoCAvqPE7L01TAaabuShIMAl6vxpWXuheOcQDgt+HgwRF4xLer0DWrY4v1I22 k4bVwLhUqzramCKEdO+baHXURC9+whMSb7+DxO4AT7RNgdD9xFybmKrS034WO8YE LNBEnl7A6hLYwEHLJfam/LNQdhld9e8oXel0vOD2ZnOAAMLqx+S6j9pLdTgjGApz -----END RSA PRIVATE KEY----- EOF $rsa = Crypt::OpenSSL::RSA->new_private_key($pemkey, "12345"); print $rsa->get_private_key_string(); print $rsa->get_private_key_string("12345"); print $rsa->get_private_key_string("12345", "aes128"); #EOF $ ./rsa-openssl.pl -----BEGIN RSA PRIVATE KEY----- MIICXgIBAAKBgQDpgvMPC5BUJCGC8yAulg0yLmcSF+PhI/JJl55ng/lTP5H9Dhzb mmTrHXX3OjJcPCUygVCLtHqgmfL0dXZjycl+VIGyaEyCZmEv8y0XGYus219tUVIW GblppdonQPiky9K2soBXxGmQAbRmRp8RsFHKDS8hhHWguLK3fAQLbcMWGwIDAQAB AoGBAMSc0qSvWuXNyj2lEkrHYvMGqRhN7zyo9J9MPz7vmyWiF/zXPisVc7WXh7UT VkXdCoDc6wHGg53oIe39XSKmS7Ur6NLyL6DyzT2f/9kGHrJ2NNo3SG87N5VPaWwv MOF2CtdW12PV8dOJzE9tj8DmPvIRI8R9otkZ7nyw9qrWe+mZAkEA/FIop/gNROll SYR+tc/+IFZxdymnbczZlvDYJDS1X4WKZrmhP6AYSKdVOhoZHGC445X9OR3Rchlx TPGNfc8hxQJBAOzqlJ3Obsz+vdtx8vi9H2aLCONO50j/OV5kiOaoPFjnOk7fM1ig lFgkUU7iKaXFaPSu8YZaYYxwuVaDgqQONl8CQFnBnCbMLWQzJk21rSFd4Md+GJTM I3wCn/B6sliGy3I0XdxW8k5g0+Kca8vkVsRqf7qts0trGQNem5hEYRG86gUCQQDc JmNxfJkjbng4Cdvw3bTnEb1xlCmBgIDrwNoiFCT3q+5XyjqpWZZfjWfsuGZg/183 N7WB1kydN0ZSKSRllDtbAkEA2fQDzTqIZL8tjM62C1FgyGzJrLw7GuLWA1o5NBr2 PXbsA37Q5XdtB7J9ZRsW6KK6TgW31CpN16RJlF1/sBOXKw== -----END RSA PRIVATE KEY----- -----BEGIN RSA PRIVATE KEY----- Proc-Type: 4,ENCRYPTED DEK-Info: DES-EDE3-CBC,2388A87A8E71B093 Fq7Mg4ynkMJ2L8+/uZc8HPz0e94ciIpTJCDaOE46rHgs6q84luIr+4P6tleHT1m2 saIwH5t2nbDh3mL661oGvDGYveexCt62drF03StQExhWBP2kqO+JQVlx9LdRbSwO yrzOZ6DYGvEUf1aBqZxvRuY+LWGT3D5EZnMzFaLIZUfXE6r166qnXDUR/d2SZgMp YQ7oljkRh+M0p6wMSEkoiwqDSstUBTACs5FDhfHbK09AWjNyZn8Dp2jm+K7mt9qg DFMPHpE8eWgdBHWv4WRMF7AKK36Z3eyDIZXmD29+r8T/Yp27Cvh9kmKZMP2HxUr0 XLImEV2KMPGqvWmaP8f6VbpSFBDHW7FZfFbqMrvwx/KFlvhoZzjqpvOSHVwnsd2Z e6MpI5214fQQusLRcx1LcRmDoM8KMVUFZ0WtLsBPBkJQnqyQUAV9ClNYLJUlDe4p GLex7sRhWKINKUMk7LAsqNs1TIeIroxNd6z8oCY48FV+vQeJrVE101UP7SzFLCWf LEtpNJM7pCVBEWq/1eq5QGyJiQ5rTvD5epzOaaVg2Sw8y8L4iDg+BD1UWgtFwIYh hZO9n0Ax61DcG4GIN81Eo+zFzWUvKOH39byCVsQLRHd7BZfOaGZzsd5DWT6PUji/ 9UgfirJeCF7+mKoT0Sddk4X9WOfLfxMF7ZV3qk1TvO8nQfiE9zvmYkqWgNacp4IQ PXCzyRjZMROuvsIQnZ73g9qwZZIPvL6Bjngq0AT4Fk0FGekmzxC5XbeNUwcsLqV7 oN/pZfejwOKmVksPCOLv2dh8ejATZsw6kVTlhqTQNzfuUvwowFp/9Q== -----END RSA PRIVATE KEY----- -----BEGIN RSA PRIVATE KEY----- Proc-Type: 4,ENCRYPTED DEK-Info: AES-128-CBC,D4E4C65A1D901C671D3AD960DE509399 Ns0WUNbPKKDFZPEoExSqYP46Qk2P8Jaazuk/92OKe5hQSjJ/3qpA8LQSd+tw2Bjn UUFdhUO1rCHYIbzR/RSUYNlHyDFODZYHMp6mC9uDOksOSj25tCrZvPRiv8JMdmSj 0a4QL8VlaLnsJtXRKSnoYoKvdLqwflnvVSgetPCf4HhN3jFmGopyX5vdufXUQxMo oBLPPezYBMKVEeyE2Pb13NYLzlvIh2hJBaX3tv5p/hhLLGDa7KYv4inwfxAlI8B4 5FFX2uIsNw4Gm0sOfjq8saVLg0KLyDqkd4thKxtrxHHKLf1W18v+pbPrZEXvRe/C YVGu0rE3NQUtx0IlcNIuwV3DvmQtxqN4l568MqR2UJcKc61umDPMAbIW1TorF4Fm PqC6W6z+rxUqY2zvCKIjWTQnYbOJ1dkyZj5rM6kgacvXEehjYOCuPTLMDb0rUjLo JvtKdRJqFYvEI/jXThlMns7GXXJhQegGgCgWdTaNg3kEkX4pbneUl2PmKa9HDmvB oaC5hFDonRDriCtfpVhr7Sdn9zOQVCytcvB/eLlH451/xZNlMlSlCjPCiYuCXNz1 uQf2GOhllkYuQren5JtgNTcXKR3Z0fu0jTqjwGijoN5KXlRItcfJlNJ9/9/tNJ3y Mql4qr8L3Dkhh6wJI/8PIyNa06IBuhs51B1057e1gHlzeZHMbr5rZO5lfIHXqf3Z XvT2KV8+fyqvaYHd1rJjB7+QrMClhVmOLhp6DCBp2gNlgqDc/n1X0BB/JYx94CFn WW2cYM9n8R4fXGy/mZRqYcBoydzZ+tENDZpXXITNl1CBBwrI1vl7/2j//kk3QkPN -----END RSA PRIVATE KEY----- -- With best regards, Oleg Borodin +7-952-058-72-64 bo...@un... onb...@gm... |
From: P. R. <sa...@po...> - 2017-01-11 20:01:13
|
Hello, I found your contact information whilst looking for individuals or companies that might require translation services. I wanted to ask if you are the right person to contact regarding professional language services? I am a Business Development Manager at PoliLingua Ltd. We are an established translation services provider doing business since 2002. We have been providing language services to many businesses in the USA and worldwide including Samsung, Disney, Procter & Gamble, Affymetrix, Parexel, Nuance Communications and many other smaller companies. If you use language services (business translation, localisation, transcription, interpreting, localised SEO, multilingual VO, etc.), may I interest you in a trial of our service? Otherwise, you may want to keep our email on file for future reference. You can also have a look at our site www.polilingua.com http://www.polilingua.net/campaigns/dx86875qlmb7e/track-url/ce230l94ac3e4/bf83f6f355c8da32cdbfdc4be5917028d56fd0b6 and see for yourself the services we provide. Alternatively, if you know of other people or businesses that need translation services, I would appreciate if you could pass this information onto them. Thank you, Parascovia Rodideal Business Development Manager PoliLingua Ltd. E-mail: sa...@po... Skype:sales.polilingua.com Web: http://www.PoliLingua.com http://www.polilingua.net/campaigns/dx86875qlmb7e/track-url/ce230l94ac3e4/96cb51fdf2049b8c8af091d4bec38fbecb0a9cd2 Phone: +1 347.414.8287 INSTANT UNSUBSCRIBE HTTP://WWW.POLILINGUA.NET/CAMPAIGNS/DX86875QLMB7E/TRACK-URL/CE230L94AC3E4/C676249C18928CE63E8FC95EE674C1480149B7FF |
From: Gabriela M. <gab...@gm...> - 2016-10-13 08:55:38
|
Hello, i have a problem, dont know how to resolve it. Please for help. I trying for implementation bank payment system. They are using SHA2 sign and asymetric RSA encoding/decoding in standard PKCS#1 for communitation. They gived to me php script, but my system is in perl. I using Crypt:OpenSSL:RSA. Fast info about steps: 1. signing XML data with my private key 2. crypt this signed data with public key of bank 3. send to bank, bank 4. bank send me other signed, crypted XML message 5. I need to decrypt message with my private key - i'll have signed message 6. verify signature and get xml data using public key from bank And i have problem with step 6 - how i can get original data from signed message, and then verify signature?? In php script they using "openssl_pkcs7_verify" function, but i dont know how i can do it in perl. please help, ill be happy for any advice. Gabriela Mackova |
From: <ch...@gm...> - 2016-08-24 23:03:36
|
Hello! I have a very specific question about Crypt::OpenSSL::RSA. Or maybe it is more about Perl XS or OpenSSL. I try to do very similar things in my own XS-module. It is because OAEP-SHA2 is not supported in Crypt::OpenSSL::RSA but thats not the problem here. As far I see there is no special thread-handling regarding OpenSSL in Crypt::OpenSSL::RSA. But is is working even inside Perl threads. My code is working in C, in Perl covered in a XS-module but it crashed if I call the XS-module within a Perl thread. I am pretty new to Perl XS and so I would like to ask if there is a special trick to make it work?? My idea was that the OpenSSL-thread-handling was missing (https://www.openssl.org/docs/man1.0.2/crypto/threads.html) in my module and therefore it is not working with threads. But as far I see it is also not included in Crypt::OpenSSL::RSA. So why it is working there? Here is a very simple function. It will crash at RSA_size if used inside a Perl thread. It will work fine if used in C or thread-less Perl. No big checks, just for demonstration. ------------------------ void _foo (void) { setbuf (stdout,NULL); #if defined(OPENSSL_THREADS) printf ("\nTHS enabled in OpenSSL"); #else printf("\nTHS not enabled"); #endif unsigned char key [3000]; # is enought memset (key, 0, 3000); printf ("\ninit=%d", SSL_library_init ()); FILE *f = fopen ("key.key","r"); # read the key-file printf ("\nf=%d", f); int keysize = fread (key, 1, 3000, f); printf ("\nn=%d",keysize); fclose (f); printf ("\nkey=%s", key); BIO *bio = BIO_new_mem_buf (key, keysize); printf ("\nbio=%ld", bio); RSA *pk = (RSA *) PEM_read_bio_RSAPrivateKey (bio, NULL, NULL, NULL); printf ("\npk=%ld", pk); printf ("\nsz=%d" ,RSA_size(pk)); // ******* crash here printf ("\n\n"); } ------------------------ Thanks for help! Chris |
From: <c.h...@ad...> - 2016-07-01 09:12:29
|
Hello! I am using Crypt::OpenSSL::RSA for implementing XML-Encryption and I have a little problem with RSA-OAEP. Maybe I can get a little hint. I can perfectly decrypt RSA 1.5 (http://www.w3.org/2001/04/xmlenc#rsa-1_5) with <https://metacpan.org/pod/Crypt::OpenSSL::RSA#use_pkcs1_padding> use_pkcs1_padding. Also ok is http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p with use_pkcs1_oaep_padding. But http://www.w3.org/2001/04/xmlenc#rsa-oaep does not. I tried any padding. I get: RSA.xs:202: OpenSSL error: oaep decoding error Is it not supported or whats the problem. I tried it against multiple parties and RSA-OAEP never worked. Thanks for help! Christoph |
From: Tim V. <ti...@el...> - 2015-05-08 16:05:55
|
I was able to resolve my issues passing the encrypted message encoding it using MIME::Base64, as you suggested, so this was a simple encoding issue. Thanks for the advice and this great module Ian! Tim On 6 May 2015 at 10:20, Tim Vaillancourt <ti...@el...> wrote: > (Forgot to reply all) > > Hey Ian, > > Thanks a lot for your great reply! I'll try out the base64 idea you had, I > see where you're going with that suggestion. If that doesn't work, I can > definitely pastebin a working example with real keys. > > On the bcrypt suggestion, I could easily be wrong about this but I think > that won't work for my situation, I'll explain: I am creating a REST API > which needs to return passwords in JSON documents to an agent/client script > which uses the passwords to retrieve stuff from a databases. I want this to > be secure as possible, and I'd like to leave the non-sensitive data > readable in plain-text, ie: only encrypt passwords. Essentially, the > agent/client doesn't "know" the password or receive user-input, so I don't > think a one-way/digest hash will work for me here, probably only a > public/private key system. That said, if you have any suggestions for this > situation I explained, I really appreciate your thoughts! > > Cheers, > > Tim > > On 5 May 2015 at 22:52, Ian Robertson <ian...@gm...> wrote: > >> It's hard to say without test code that is completely self contained >> (i.e. includes sample public and private keys, and makes it clear how you >> are passing data from one script to the other), but you might be running >> into an issue with how you are transferring binary data between the two >> scripts. You might want to consider encoding the encrypted value with >> something like MIME::Base64, and passing that between the two. >> >> Unrelated, I noticed that you named your data to encrypt "password". In >> general, RSA (or any encryption/decryption algorithm) is a poor choice for >> providing password security. Preferable is a good one way hashing function >> with salting; bcrypt <https://en.wikipedia.org/wiki/Bcrypt> seems to be >> particularly well suited for passwords. >> >> - Ian >> >> On Tue, May 5, 2015 at 5:38 AM, Tim Vaillancourt <ti...@el...> >> wrote: >> >>> Hey guys, >>> >>> I am running into an issue using Crypt::OpenSSL::RSA which I am fairly >>> confident the issue is my fault/lack-of-understanding, but I would really >>> appreciate a kick in the right direction if anyone sees where I've gone >>> wrong as I am probably 95% there. >>> >>> I am using Crypt::OpenSSL::RSA to encrypt a message with a private key >>> (->private_encrypt), and in a separate perl script I am passing the >>> encrypted message to be decrypted (->public_decrypt), using the same >>> version of Crypt::OpenSSL::RSA. >>> >>> When I do the encryption and decryption within the same Perl script (2 >>> subroutines), it all works exactly as expected, however when I break the >>> encryption and the decryption into 2 scripts and pass the encrypted payload >>> between them in a file, I get the OpenSSL error when decrypting in my >>> "decryption" script: >>> >>> "RSA.xs:202: OpenSSL error: data greater than mod len at decrypt.pl >>> line 27" >>> >>> My hunch is random numbers are my problem, and ScriptA and ScriptB are >>> generating different numbers, but I know almost nothing about RSA and could >>> be totally wrong there. I tried using ->import_random_seed(); in both >>> scripts to no avail, however. >>> >>> Attached is 3 files: >>> 1) the script that works, both subroutines in one file => >>> http://pastebin.com/TWYb1LBQ >>> 2) the "encrypt" script (which works fine) => >>> http://pastebin.com/8H8a9k9x >>> 3) the "decrypt" script (which gets the OpenSSL error on decryption) => >>> http://pastebin.com/1TfYypm5 >>> >>> Any help is enormously appreciated! Thanks all! >>> >>> Tim >>> >>> >>> >>> >>> ------------------------------------------------------------------------------ >>> One dashboard for servers and applications across Physical-Virtual-Cloud >>> Widest out-of-the-box monitoring support with 50+ applications >>> Performance metrics, stats and reports that give you Actionable Insights >>> Deep dive visibility with transaction tracing using APM Insight. >>> http://ad.doubleclick.net/ddm/clk/290420510;117567292;y >>> _______________________________________________ >>> Perl-openssl-users mailing list >>> Per...@li... >>> https://lists.sourceforge.net/lists/listinfo/perl-openssl-users >>> >>> >> > |
From: Tim V. <ti...@el...> - 2015-05-06 08:21:01
|
(Forgot to reply all) Hey Ian, Thanks a lot for your great reply! I'll try out the base64 idea you had, I see where you're going with that suggestion. If that doesn't work, I can definitely pastebin a working example with real keys. On the bcrypt suggestion, I could easily be wrong about this but I think that won't work for my situation, I'll explain: I am creating a REST API which needs to return passwords in JSON documents to an agent/client script which uses the passwords to retrieve stuff from a databases. I want this to be secure as possible, and I'd like to leave the non-sensitive data readable in plain-text, ie: only encrypt passwords. Essentially, the agent/client doesn't "know" the password or receive user-input, so I don't think a one-way/digest hash will work for me here, probably only a public/private key system. That said, if you have any suggestions for this situation I explained, I really appreciate your thoughts! Cheers, Tim On 5 May 2015 at 22:52, Ian Robertson <ian...@gm...> wrote: > It's hard to say without test code that is completely self contained (i.e. > includes sample public and private keys, and makes it clear how you are > passing data from one script to the other), but you might be running into > an issue with how you are transferring binary data between the two scripts. > You might want to consider encoding the encrypted value with something like > MIME::Base64, and passing that between the two. > > Unrelated, I noticed that you named your data to encrypt "password". In > general, RSA (or any encryption/decryption algorithm) is a poor choice for > providing password security. Preferable is a good one way hashing function > with salting; bcrypt <https://en.wikipedia.org/wiki/Bcrypt> seems to be > particularly well suited for passwords. > > - Ian > > On Tue, May 5, 2015 at 5:38 AM, Tim Vaillancourt <ti...@el...> > wrote: > >> Hey guys, >> >> I am running into an issue using Crypt::OpenSSL::RSA which I am fairly >> confident the issue is my fault/lack-of-understanding, but I would really >> appreciate a kick in the right direction if anyone sees where I've gone >> wrong as I am probably 95% there. >> >> I am using Crypt::OpenSSL::RSA to encrypt a message with a private key >> (->private_encrypt), and in a separate perl script I am passing the >> encrypted message to be decrypted (->public_decrypt), using the same >> version of Crypt::OpenSSL::RSA. >> >> When I do the encryption and decryption within the same Perl script (2 >> subroutines), it all works exactly as expected, however when I break the >> encryption and the decryption into 2 scripts and pass the encrypted payload >> between them in a file, I get the OpenSSL error when decrypting in my >> "decryption" script: >> >> "RSA.xs:202: OpenSSL error: data greater than mod len at decrypt.pl line >> 27" >> >> My hunch is random numbers are my problem, and ScriptA and ScriptB are >> generating different numbers, but I know almost nothing about RSA and could >> be totally wrong there. I tried using ->import_random_seed(); in both >> scripts to no avail, however. >> >> Attached is 3 files: >> 1) the script that works, both subroutines in one file => >> http://pastebin.com/TWYb1LBQ >> 2) the "encrypt" script (which works fine) => >> http://pastebin.com/8H8a9k9x >> 3) the "decrypt" script (which gets the OpenSSL error on decryption) => >> http://pastebin.com/1TfYypm5 >> >> Any help is enormously appreciated! Thanks all! >> >> Tim >> >> >> >> >> ------------------------------------------------------------------------------ >> One dashboard for servers and applications across Physical-Virtual-Cloud >> Widest out-of-the-box monitoring support with 50+ applications >> Performance metrics, stats and reports that give you Actionable Insights >> Deep dive visibility with transaction tracing using APM Insight. >> http://ad.doubleclick.net/ddm/clk/290420510;117567292;y >> _______________________________________________ >> Perl-openssl-users mailing list >> Per...@li... >> https://lists.sourceforge.net/lists/listinfo/perl-openssl-users >> >> > |
From: Ian R. <ian...@gm...> - 2015-05-05 20:53:03
|
It's hard to say without test code that is completely self contained (i.e. includes sample public and private keys, and makes it clear how you are passing data from one script to the other), but you might be running into an issue with how you are transferring binary data between the two scripts. You might want to consider encoding the encrypted value with something like MIME::Base64, and passing that between the two. Unrelated, I noticed that you named your data to encrypt "password". In general, RSA (or any encryption/decryption algorithm) is a poor choice for providing password security. Preferable is a good one way hashing function with salting; bcrypt <https://en.wikipedia.org/wiki/Bcrypt> seems to be particularly well suited for passwords. - Ian On Tue, May 5, 2015 at 5:38 AM, Tim Vaillancourt <ti...@el...> wrote: > Hey guys, > > I am running into an issue using Crypt::OpenSSL::RSA which I am fairly > confident the issue is my fault/lack-of-understanding, but I would really > appreciate a kick in the right direction if anyone sees where I've gone > wrong as I am probably 95% there. > > I am using Crypt::OpenSSL::RSA to encrypt a message with a private key > (->private_encrypt), and in a separate perl script I am passing the > encrypted message to be decrypted (->public_decrypt), using the same > version of Crypt::OpenSSL::RSA. > > When I do the encryption and decryption within the same Perl script (2 > subroutines), it all works exactly as expected, however when I break the > encryption and the decryption into 2 scripts and pass the encrypted payload > between them in a file, I get the OpenSSL error when decrypting in my > "decryption" script: > > "RSA.xs:202: OpenSSL error: data greater than mod len at decrypt.pl line > 27" > > My hunch is random numbers are my problem, and ScriptA and ScriptB are > generating different numbers, but I know almost nothing about RSA and could > be totally wrong there. I tried using ->import_random_seed(); in both > scripts to no avail, however. > > Attached is 3 files: > 1) the script that works, both subroutines in one file => > http://pastebin.com/TWYb1LBQ > 2) the "encrypt" script (which works fine) => http://pastebin.com/8H8a9k9x > 3) the "decrypt" script (which gets the OpenSSL error on decryption) => > http://pastebin.com/1TfYypm5 > > Any help is enormously appreciated! Thanks all! > > Tim > > > > > ------------------------------------------------------------------------------ > One dashboard for servers and applications across Physical-Virtual-Cloud > Widest out-of-the-box monitoring support with 50+ applications > Performance metrics, stats and reports that give you Actionable Insights > Deep dive visibility with transaction tracing using APM Insight. > http://ad.doubleclick.net/ddm/clk/290420510;117567292;y > _______________________________________________ > Perl-openssl-users mailing list > Per...@li... > https://lists.sourceforge.net/lists/listinfo/perl-openssl-users > > |
From: Tim V. <ti...@el...> - 2015-05-05 12:07:36
|
Hey guys, I am running into an issue using Crypt::OpenSSL::RSA which I am fairly confident the issue is my fault/lack-of-understanding, but I would really appreciate a kick in the right direction if anyone sees where I've gone wrong as I am probably 95% there. I am using Crypt::OpenSSL::RSA to encrypt a message with a private key (->private_encrypt), and in a separate perl script I am passing the encrypted message to be decrypted (->public_decrypt), using the same version of Crypt::OpenSSL::RSA. When I do the encryption and decryption within the same Perl script (2 subroutines), it all works exactly as expected, however when I break the encryption and the decryption into 2 scripts and pass the encrypted payload between them in a file, I get the OpenSSL error when decrypting in my "decryption" script: "RSA.xs:202: OpenSSL error: data greater than mod len at decrypt.pl line 27" My hunch is random numbers are my problem, and ScriptA and ScriptB are generating different numbers, but I know almost nothing about RSA and could be totally wrong there. I tried using ->import_random_seed(); in both scripts to no avail, however. Attached is 3 files: 1) the script that works, both subroutines in one file => http://pastebin.com/TWYb1LBQ 2) the "encrypt" script (which works fine) => http://pastebin.com/8H8a9k9x 3) the "decrypt" script (which gets the OpenSSL error on decryption) => http://pastebin.com/1TfYypm5 Any help is enormously appreciated! Thanks all! Tim |
From: Robert K. <r.k...@co...> - 2015-01-12 11:13:54
|
Witam, Zwracam się z zapytaniem w imieniu internetowego serwisu tłumaczeniowego. Polscy przedsiębiorcy szukają dobrych jakościowo tłumaczeń w związku z rosnącym eksportem i chęcią nawiązywania międzynarodowej współpracy. Chciałem się zapytać czy mogę przedstawić ofertę na usługi tłumaczeń pisemnych? Pozdrawiam, Robert Kucharski Business Development Manager |
From: Philip P. <ph...@cp...> - 2014-11-21 18:13:47
|
Would you all be open to a patch that adds: get_private_key_der_string() get_public_key_der_string() to Crypt::OpenSSL::RSA. It should be fairly trivial. Thanks, -Philip |
From: Shahirah D. <bed...@gm...> - 2013-09-07 10:31:30
|
bags,etc. ,jewelry on our website. -simple and elegant. http://qps.ru/6Ak4g |
From: Gomer.grondin <gom...@gm...> - 2013-08-29 14:21:02
|
Have looked at test file provided, cpan doc.. have not found support for verifying base64 encoded signatures.. have tried MIME::Base64, seems incompatible,correct? is there other documentation to consult? Can you recommend a workaround? Sent from my Samsung smartphone on AT&T |
From: Berg W. <sal...@gm...> - 2012-09-05 13:06:04
|
Now youe reading this I Bet you love Good Wine , right? We in the business of making Great wine . Our farm produces healthy grapes and to this end we wine products come out right. We grown a data base of clients in the states and canada. To this increasing market we require sales reps and marketers in the states and canada Who we need someone who can read and write and spare at least two hours a day must be computer litrate and have good communication skills Benefits A rep can make between $600 to $1200 a week or even more all Cv must be sent to sal...@gm... also send us the folowing Full Name address phone number All mails must be directed James Hart @ :sal...@gm.... Regards Berg winery |
From: Berg W. <ber...@ho...> - 2012-06-28 09:11:09
|
Got YOUR Attention Right? Everyone loves Wine Am James hart , I am Representing a winery called Berg Winery .We Deal in all sort of wine products.We currently selling our products in the States and Canada, our products are accepted widely and our market is growing. What we looking for: We need Representatives in sales ,marketing and customer care. What is Required: Two hours of your time daily ,and internet access. What Benefits you can earn between $400 to $800 weekly Do send the following: Full name: Address: Telephone number: Regards james hart ber...@ho... |
From: Berg W. <jam...@ho...> - 2012-06-25 06:27:34
|
Got YOUR Attention Right? Am James hart , representing a winery called berg winery . dealers in sort of wine products, we currently selling our products in the states and canada, our products are accepted widely and our market is growing. What we looking for: We need Representative in sales and customer care. What is Required: Two hours of your time daily ,and internet access. What Benefits you can earn between $400 to $800 weekly Do send us a mail Regards Jam...@ho... |
From: Youri W. <tet...@gm...> - 2012-02-29 22:36:43
|
Uhum excuse me, I got it going, wasn't realizing that it was a directory that was needed as input. Sorry for bothering. Youri ---------- Forwarded message ---------- From: Youri Westerman <tet...@gm...> Date: Wed, Feb 29, 2012 at 6:03 PM Subject: c_rehash To: per...@li... Hello All, My question is pretty straight forward, but I've been searching for hours now and I can't seem to find an answer somewhere. I would like to use c_rehash to make a hash-based symlink to a .pem file. But somehow I cannot figure out how to do this, I've tried running c_rehash whilst in the directory containing the file, but that leaves me nowhere. Furthermore c_rehash does not give any output of whatsoever, no file, no text nothing... Does someone know what I'm doing wrong? Thanks in advance, Youri |
From: Youri W. <tet...@gm...> - 2012-02-29 17:03:40
|
Hello All, My question is pretty straight forward, but I've been searching for hours now and I can't seem to find an answer somewhere. I would like to use c_rehash to make a hash-based symlink to a .pem file. But somehow I cannot figure out how to do this, I've tried running c_rehash whilst in the directory containing the file, but that leaves me nowhere. Furthermore c_rehash does not give any output of whatsoever, no file, no text nothing... Does someone know what I'm doing wrong? Thanks in advance, Youri |