IO-Socket-SSL - Re: Checking of hostname missing

[ home | FAQ | about | stats | new post | login | register | tags ]
Attend the Test automation using Perl master class on 19-20 June in Chicago, IL. Just after YAPC::NA

IO-Socket-SSL [search.cpan.org] [Kobes search] [View and report bugs] [Ratings 5.0 (1) ]
[AnnoCPAN] [CPAN Tests results] [CPANTS]

Posted on Wed Jun 13 12:27:53 2007 by christopherodenbach in response to 5422 (See the whole thread of 6)
Re: Checking of hostname missing

Hi,

I tried to use the verify_callback, but the callback seems to be called for every part of the complete certificate chain, not only for the server certificate. It also gets too few parameters.

Even if every application has to implement its own hostname checks, wouldn't it be good to have common checks like hostname with or without wildcards, IP addresses etc. in a central place? Should that be IO::Socket::SSL or Net::SSLeay? It does not make much sense to me that every application should implement all the messy certificate handling again and again.

Christopher

Direct Responses: 5432 | Write a response

[ home | FAQ | about | stats | new post | login | register | tags ]
Attend the Test automation using Perl master class on 19-20 June in Chicago, IL. Just after YAPC::NA
Service launched on 2nd of February 2005.
Comments, and other submissions on CPAN Forum are Copyright 2005-2007, their respective owners.
Site maintainer is not responsible for content. Privacy Policy
Maintained and hosted by Gabor Szabo at Perl Training Israel
See also World Wide Perl Training