Re^3: https using lwp (WWW::Mechanize)


Welcome to the Monastery
	PerlMonks

Re^3: https using lwp (WWW::Mechanize)

by noxxi (Pilgrim)

on Nov 19, 2016 at 08:27 UTC ( [id://1176130]=note: print w/replies, xml )

Need Help??

in reply to Re^2: https using lwp (WWW::Mechanize)
in thread https using lwp

The easiest way to deal with self-signed certificates is to expect exactly this certificate. This can be done with the SSL_fingerprint argument of IO::Socket::SSL which you can set using ssl_opts in LWP. With this argument all other checks (subject matches hostname, expiration...) are disabled.
You need at least IO::Socket::SSL version 1.980 for this (released 04/2014). See the documentation of SSL_fingerprint for details but in short:

To get the current fingerprint analyze the servers certificate or get the fingerprint from a trusted location with:

use IO::Socket::SSL;
my $cl = IO::Socket::SSL->new(
    PeerAddr => "ip:port", 
    SSL_verify_mode => 0
);
print $cl->get_fingerprint."\n"; # sha256$b64d26746ca1cd5403....
[download]

And to use it:

my $ua = LWP::UserAgent->new...
$ua->ssl_opts(SSL_fingerprint => 'sha256$b64...');
[download]

Comment on Re^3: https using lwp (WWW::Mechanize) Select or Download Code

In Section Seekers of Perl Wisdom

Domain Nodelet^?

www.com | www.net | www.org

Node Status^?

node history
Node Type: note [id://1176130]
help

Chatterbox^?

How do I use this? • Last hour • Other CB clients

Other Users^?

Others goofing around in the Monastery: (4)

As of 2024-04-19 16:02 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Today I Learned

Voting Booth^?

No recent polls found