[pyOpenSSL] How can I verify client that the client is signed by me?
Sebastian Greatful
sebastianthegreatful at gmail.com
Thu Sep 18 09:54:02 CEST 2008
Thanks to Jean-Paul I now know that the problem wasn’t my code but rather my
certificates.
So the lesson is, remember to verify those certificates before using them.
Best regards,
Seb
-----Oprindelig meddelelse-----
Fra: pyopenssl-list-bounces at lists.sourceforge.net
[mailto:pyopenssl-list-bounces at lists.sourceforge.net] På vegne af Jean-Paul
Calderone
Sendt: 17. september 2008 23:02
Til: pyopenssl-list at lists.sourceforge.net
Emne: Re: [pyOpenSSL] How can I verify client that the client is signed by
me?
On Wed, 17 Sep 2008 22:51:40 +0200, Sebastian Greatful
<sebastianthegreatful at gmail.com> wrote:
><snip />
>>This isn't a complete example (and the line numbers would make it annoying
>>to actually run if it were ;). A complete, minimal reproduction of the
>>problem would make it easier to diagnose.
>
>Sorry, I'm just copy pasting from vim.
>
>Server: http://paste.pocoo.org/show/85562/
>FileServer: http://paste.pocoo.org/show/85561/
>HttpServer: http://paste.pocoo.org/show/85563/
>Httplib: http://paste.pocoo.org/show/85564/
>
>
>Is that better? Just let me know how you want it.
>
The client code is important too (since it's the thing supplying the
certificate), as are the keys and certificates (since they determine
what the connection is actually verifying). The HTTP parts probably
aren't important since the failure is happening at the SSL layer, so
the HTTP code probably never gets involved. If you can provide a
file containing a server and a file containing a client such that when
run the client connects to the server and the server fails to decide
that the client's certificate is valid, that'd be best (basically, make
it possible for me to be really lazy, so that I am inclined to work on
this instead of on real work ;).
Jean-Paul
-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great
prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________
pyopenssl-list mailing list
pyopenssl-list at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/pyopenssl-list
More information about the pyopenssl-users
mailing list