Welcome to the Monastery | |
PerlMonks |
SSL certificate store for a Perlbrew installby chrestomanci (Priest) |
on Jan 14, 2021 at 16:48 UTC ( [id://11126918]=perlquestion: print w/replies, xml ) | Need Help?? |
chrestomanci has asked for the wisdom of the Perl Monks concerning the following question: Greetings wise brothers, I seek your advice on secret communication an how we can be sure we know who we are talking to. Specifically, I am trying to get LWP::UserAgent running inside a locally compiled perlbrew install, to accept a corporate root cert. At my company, IT have created a private SSL certificate keypair, and used it to sign the ssl certs on numerous internal servers. They also publish the public half of the SSL cert which (on ubuntu) I have installed in /etc/ssl/certs/ where it is accepted by system perl, firefox, wget etc. For some reason the corporate public certificate is not accepted by a perlbrew install of perl 5.10 that I have compiled localy. Do I need to install the corporate root cert somewhere else for perlbrew to accept it? Code to reproduce
This code works fine using Ubuntu's system perl on all the versions of Ubuntu I could find. It also works if I uncomment the $ua->ssl_opts( verify_hostname => 0 ,SSL_verify_mode => 0x00); line, But it fails on line 35 with Can't connect to REDACTED:443 (certificate verify failed) at scripts/dev/test_ssl_download.pl line 35. if I use perlbrew perl. Any ideas? NB: I asked this question in chatterbox about an hour ago, but did not get a reply, so I am re-posting as a perl question.
Back to
Seekers of Perl Wisdom
|
|