Don't know about the short story, but the form data has a bug
(typo in the posting to the newsgroup?) The GET cannot be
used (to the best of my knowledge) with form data - you
want to be using "POST /someurl.cgi HTTP/1.0"
GET expects all name-value pairs to be in the URL, and the
CGI processing the request will retrieve the data by
reading environment variable "QUERY_STRING". POST, on the
other hand passes data as you have shown, requires a
CONTENT_LENGTH, as you have shown, and the CGI gets the
data in its standard input.
Grim wrote:
>
> Hi
>
> I have looked through the archives and cannot find an answer to this question.
> I know relatively little about SSL or cryptography in general so I am
> probably asking an obvious question that I will get flamed for...
>
> The long and short story:
>
> Short story:
>
> Short story:
> I cannot connect using netscape to the demo server found in /demos/ssl/serv.cpp
> I get the error message
>
> 20669:error:1408A0C1:SSL routines:SSL3_GET_CLIENT_HELLO:no shared
> cipher:s3_srvr.c:714:
>
> from the server and netscape says:
>
> Netscape and this server cannot communicate securely because they have
> no common encryption algorithm(s).
>
> I have a thawte certificate that definitely works as I am using it
> Long Story:
> I am trying to build a commandline web browser that allows you to
> retrieve the HTML on a webpage. I have everything working now except
> for passing variables to a secure server via POST.
>
> I am passing it in the form:
> GET /someurl.cgi HTTP/1.0
> Host: test.com
> User-Agent: Robot Commandline Browser
> Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, */*
> Content-type: application/x-www-form-urlencoded
> Content-length: 8
>
> test=dot
>
> This works fine as an insecure browser. When I try and send this to a
> secure server, it doesnt work.
> Well, it doesnt SEEM to work, I used it on myown test CGI script and
> it seemed to work, but when I send it to some real live servers, they
> cannot read the data I send to them. I tested with my script and it
> receives all the variable data, and can display the string that is
> passed to stdin, but on sites where I cannot get access to the servers
> to see what is happening, it doesnt seem to pass the variables properly.
>
> So, I decided to create a quick dirty server just to see what exactly
> netscape is sending to the remote serveres, see where my handshaking
> differs, and see where I am going wrong, as from what I can tell I am
> following all of the protocols properly. However, when I use the demo
> server, I get the error messages as described in the short story.
>
> Now, I am using openSSL 0.9.3a, maybee this is an issue with that
> version and I should upgrade to 0.9.4...
>
> If anyone has any hints as to how to make the demo server work with
> netscape, or what I am doing wrong with my passing the variables to
> the remote site, please, let me know.
>
> Thanks
>
> M Simms
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
--
------------------------------------------------------------
Thomas Reinke Tel: (416) 460-7021
Director of Technology Fax: (416) 598-2319
E-Soft Inc. http://www.e-softinc.com
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
