Awesome SSL client cert fun

Tuesday, May 31, 2011

Client cert authentication is oddly elusive given the practical value. I found a neat bug:

with
SSLVerifyClient optional
SSLVerifyDepth 3
SSLCADNRequestPath /usr/local/openssl/certs/clientcerts/

I get a request for identification in firefox, no problem. If I choose the right certificate to respond with I get an instant child pid 61501 exit signal Bus error (10). Every click on the “OK” button gets another seg fault. Yay. Magic.

Posted at 00:36:09 GMT-0700

Category : FreeBSD • Technology

Tags : Computing • Cryptographic software • Free software • FTP clients • Mozilla Firefox • OpenSSL • SSL

You must be logged in to post a comment.

222 Views

Disabling TLS1.0 in firefox worked but IE doesn't

TLS 1.0 Hatin’ the Game

Isabella

Recent Posts
- TB 128 is coming. Lock your doors and hide your wife.2024 September 04
- Goodbye, Tortuga.2024 April 25
- A one page home/new tab page with random pictures, time, and weather2024 April 11
- Putting ccache on a backed RAM disk to speed compiles2024 March 16
- Audio File Analysis With Sox2024 February 07
- Manually Update Time Zone Data on Android 102023 October 31
- Autodictating to self using Whisper to preserve privacy2023 August 17
- Projecting Qubit Realizations to the Cryptopocalpyse Date2023 August 04
- AI PSYOPS are changing strategic messaging2023 July 29
- Convert A Slideshow/Presentation into HTML 5 Video2023 July 23
Categories
Categories
Links
Search
Search for:
Archives
Archives
Post History
May 2011
M T W T F S S
1
2 3 4 5 6 7 8
9 10 11 12 13 14 15
16 17 18 19 20 21 22
23 24 25 26 27 28 29
30 31
« AprJun »

Gessel On…

Awesome SSL client cert fun

Leave a Reply

TLS 1.0 Hatin’ the Game

Isabella