in reply to Certificate and SSL question
Take a look inside LWP::Protocol::https.
It appears that some extra headers would be set,
although I can't say definitively since
... and i'm right. It appears Client-SSL-Warning: Peer certificate not verified is set, so just check for it in the response object (this warning would probably be issued on self signed certificates as well, so for additional info, you'd turn to something like Crypt::SSLeay).
Here's a nice debug technique :)
I hope that helps. A thanks to dominix for the website with invalid date on certificate.lwp-request -USex https://selfcare.mana.pf/ LWP::UserAgent::new: () LWP::UserAgent::request: () LWP::UserAgent::send_request: GET https://selfcare.mana.pf/ LWP::UserAgent::_need_proxy: Not proxied LWP::Protocol::http::request: () LWP::Protocol::collect: read 621 bytes LWP::Protocol::collect: read 2052 bytes LWP::UserAgent::request: Simple response: OK GET https://selfcare.mana.pf/ User-Agent: lwp-request/2.06 GET https://selfcare.mana.pf/ --> 200 OK Connection: close Date: Wed, 11 Feb 2004 09:32:56 GMT Accept-Ranges: bytes ETag: "17f7d-a71-3ed3c20c;3ed3c4c5" Server: Apache/1.3.27 (Unix) mod_ssl/2.8.14 OpenSSL/0.9.7b Vary: negotiate,accept-language,accept-charset Content-Language: en Content-Length: 2673 Content-Location: index.html.en Content-Type: text/html Last-Modified: Tue, 27 May 2003 19:52:44 GMT Client-Date: Wed, 11 Feb 2004 09:36:07 GMT Client-Peer: 202.3.225.54:443 Client-Response-Num: 1 Client-SSL-Cert-Issuer: /C=XY/ST=Snake Desert/L=Snake Town/O=Snake Oil +, Ltd/OU=Certificate Authority/CN=Snake Oil CA/ema ilAddress=ca@snakeoil.dom Client-SSL-Cert-Subject: /C=PF/ST=Tahiti/L=Tahiti/O=MANA S.A./OU=ISP/C +N=www.mana.pf/emailAddress=admin@mana.pf Client-SSL-Cipher: DHE-RSA-AES256-SHA Client-SSL-Warning: Peer certificate not verified TCN: choice Title: Test Page for the SSL/TLS-aware Apache Installation on Web Site <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
|
|---|