Re^2: LWP::Simple::get($url) does not work for particular urls (SSL certificate verification)


We don't bite newbies here... much
	PerlMonks

Re^2: LWP::Simple::get($url) does not work for particular urls (SSL certificate verification)

by noxxi (Pilgrim)

on Dec 31, 2017 at 20:46 UTC ( [id://1206496]=note: print w/replies, xml )

Need Help??

in reply to Re: LWP::Simple::get($url) does not work for particular urls (SSL certificate verification)
in thread LWP::Simple::get($url) does not work for particular urls

>You should use the full LWP::UserAgent so you can disable SSL certificate checking, or use HTTP::Tiny, which has it disabled by default:

Certificate validation is there for a reason and simply recommending to switch it off is essentially suggesting to abandon any security provided by https since man in the middle attacks are easy if proper certificate validation is not done. The real reason that the code fails is a broken setup of the target site. This can be worked around in a secure way by setting SSL_ca_file to the appropriate CA certificates or by using SSL_fingerprint. For details see Stackoverflow where the question was also asked and I've answered it in detail.

Comment on Re^2: LWP::Simple::get($url) does not work for particular urls (SSL certificate verification)

In Section Seekers of Perl Wisdom

Domain Nodelet^?

www.com | www.net | www.org

Node Status^?

node history
Node Type: note [id://1206496]
help

Chatterbox^?

How do I use this? • Last hour • Other CB clients

Other Users^?

Others lurking in the Monastery: (3)

As of 2024-04-25 16:29 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Today I Learned

Voting Booth^?

No recent polls found