diff options
author | https://brian.may.myopenid.com// <https://brian.may.myopenid.com//@web> | 2008-10-25 22:51:05 -0400 |
---|---|---|
committer | Joey Hess <joey@kitenet.net> | 2008-10-25 22:51:05 -0400 |
commit | b522c708f0cf87b282e4d5ff0f2425040a3b7bcf (patch) | |
tree | 62a52ede8b5bbb034aeed48719ac7fc9b474a3a9 /doc | |
parent | c231adc7386d1eac0fcdf75bd54d32bbbf4ad48b (diff) | |
download | ikiwiki-b522c708f0cf87b282e4d5ff0f2425040a3b7bcf.tar ikiwiki-b522c708f0cf87b282e4d5ff0f2425040a3b7bcf.tar.gz |
Replace weirdness section with link to Debian bug report.
Diffstat (limited to 'doc')
-rw-r--r-- | doc/bugs/ssl_certificates_not_checked_with_openid.mdwn | 33 |
1 files changed, 2 insertions, 31 deletions
diff --git a/doc/bugs/ssl_certificates_not_checked_with_openid.mdwn b/doc/bugs/ssl_certificates_not_checked_with_openid.mdwn index 2e71ab031..80390622a 100644 --- a/doc/bugs/ssl_certificates_not_checked_with_openid.mdwn +++ b/doc/bugs/ssl_certificates_not_checked_with_openid.mdwn @@ -79,34 +79,5 @@ the data: $ENV{HTTPS\_CA\_DIR} = "/etc/ssl/certs/"; $ENV{HTTPS\_CA\_FILE} = "/etc/ssl/certs/file.pem"; -Unfortunately I get weird results if the certificate verification fails, tshark shows the following communications with my proxy server: - -HTTP CONNECT db.debian.org:443 HTTP/1.0 -[tls stuff] -HTTP CONNECT proxy.pri:3128 HTTP/1.0 -HTTP HTTP/1.0 403 Forbidden (text/html) - -Why it is trying to connect to the proxy server via the proxy server is beyond me. This only happens if the certificate verification fails (I think). I will continue investigating. My test code is: - - -#!/usr/bin/perl -w -use strict; -#require LWPx::ParanoidAgent; -#my $ua = LWPx::ParanoidAgent->new; - -require LWP::UserAgent; -my $ua = LWP::UserAgent->new; - -$ua->proxy(['http'], 'http://proxy.pri:3128'); -$ENV{HTTPS_PROXY} = "http://proxy.pri:3128"; -$ENV{HTTPS_CA_DIR} = "/etc/ssl/certs/"; - - -my $response = $ua->get("https://db.debian.org/"); - -if ($response->is_success) { - print $response->content; # or whatever -} else { - die $response->status_line; -} - +Unfortunately I get weird results if the certificate verification fails [[!debbug 503440]]. +It still seems to work though, regardless. |