Welcome to the Monastery | |
PerlMonks |
Certificate host verification with Net::SSLeay::post_httpsby OtcFormula (Novice) |
on Oct 30, 2011 at 15:18 UTC ( [id://934750]=perlquestion: print w/replies, xml ) | Need Help?? |
OtcFormula has asked for the wisdom of the Perl Monks concerning the following question: Hello all! I am using Net::SSLeay::post_https to post a bit of XML to a server using client certificate authentication. To wit:
It works great! But sometimes it shouldn't! It appears that no verification is being performed against the validity of the server certificate. When I use a hostname to connect that is different than the server certificate's DN, I get no warnings, errors, or anything but an otherwise successful connection. When using other languages/libraries with the same input, I get one or another "bad name" type of error. What do I need to do in order to have Net::SSLeay::post_https verify the server name against the certificate it presents? (And potentially other verifications that should properly be made?) Thanks!
Back to
Seekers of Perl Wisdom
|
|