On 2022-02-04, Dieter Maurer wrote:
> Grant Edwards wrote at 2022-2-3 14:36 -0800:
>>On 2022-02-03, Barry wrote:
>> ...
>>I've looked through the ssl.Context documentation multiple times, and
>>haven't been able to spot any option or flag that disables client
>>certificate validation or allows th
On 2022-02-04, Christian Heimes wrote:
> On 03/02/2022 19.57, Grant Edwards wrote:
>> I've got a small ssl server app. I want to require a certificate from
>> the client, so I'm using a context with
>>
>> context.verify_mode = ssl.CERT_REQUIRED
>>
&g
On 2022-02-04, Barry wrote:
>>
>>> What you're doing is a little unusual, so my first thought would be to
>>> subclass Context and override whatever method does the checks.
>>
>> I've done a dir() on the Context object, and I don't see anything that
>> looks like a method to do the checks. I susp
On 2022-02-04, Christian Heimes wrote:
> On 04/02/2022 19.24, Grant Edwards wrote:
>> The problem is _getting_ the client certificate that was provided
>> during the client/server handshake. That's trivial if the handshake
>> was successful. The problem is obtaining the client certificate when
>>
Grant Edwards wrote at 2022-2-3 14:36 -0800:
>On 2022-02-03, Barry wrote:
> ...
>I've looked through the ssl.Context documentation multiple times, and
>haven't been able to spot any option or flag that disables client
>certificate validation or allows the user to override the actual
>client certif
On 04/02/2022 19.24, Grant Edwards wrote:
The problem is _getting_ the client certificate that was provided
during the client/server handshake. That's trivial if the handshake
was successful. The problem is obtaining the client certificate when
the handshake fails. I was hoping there was a way to
On 03/02/2022 19.57, Grant Edwards wrote:
I've got a small ssl server app. I want to require a certificate from
the client, so I'm using a context with
context.verify_mode = ssl.CERT_REQUIRED
But, I want all certificates accepted. How do I disable client
certificate verification?
> On 4 Feb 2022, at 18:17, Grant Edwards wrote:
>
> On 2022-02-04, Chris Angelico wrote:
>>> On Fri, 4 Feb 2022 at 09:37, Grant Edwards
>>> wrote:
>>> I've looked through the ssl.Context documentation multiple times, and
>>> haven't been able to spot any option or flag that disables client
On 2022-02-04, Kushal Kumaran wrote:
>> It's a troubleshooting utility for displaying a client's certificate.
>>
>>> Which kinds of client certificates do you want to permit
>>
>> All of them. Anything that's parsable as an X509 certificate no matter
>> how "invalid" it is.
>>
>
> Does `openssl x
On 2022-02-04, Chris Angelico wrote:
> On Fri, 4 Feb 2022 at 09:37, Grant Edwards wrote:
>> I've looked through the ssl.Context documentation multiple times, and
>> haven't been able to spot any option or flag that disables client
>> certificate validation or allows the user to override the actua
On Thu, Feb 03 2022 at 01:32:04 PM, Grant Edwards
wrote:
> On 2022-02-03, Kushal Kumaran wrote:
>
>> On Thu, Feb 03 2022 at 10:57:56 AM, Grant Edwards
>> wrote:
>>> I've got a small ssl server app. I want to require a certificate from
>>>
On Fri, 4 Feb 2022 at 09:37, Grant Edwards wrote:
> I've looked through the ssl.Context documentation multiple times, and
> haven't been able to spot any option or flag that disables client
> certificate validation or allows the user to override the actual
> client certificate validation process.
On 2022-02-03, Barry wrote:
>
>> [...] I just want to require that the client provide a certificate
>> and then print it out using print(connection.getpeercert())
>
> I am not near the pc with the code on. But in outline you provide a
> ssl context that returns true for the validation of the cert
> On 3 Feb 2022, at 21:34, Grant Edwards wrote:
>
> On 2022-02-03, Kushal Kumaran wrote:
>
>>> On Thu, Feb 03 2022 at 10:57:56 AM, Grant Edwards
>>> wrote:
>>> I've got a small ssl server app. I want to require a certificate from
On 2022-02-03, Kushal Kumaran wrote:
> On Thu, Feb 03 2022 at 10:57:56 AM, Grant Edwards
> wrote:
>> I've got a small ssl server app. I want to require a certificate from
>> the client, so I'm using a context with
>>
>> context.verify_mode = ssl.CERT_REQ
On Thu, Feb 03 2022 at 10:57:56 AM, Grant Edwards
wrote:
> I've got a small ssl server app. I want to require a certificate from
> the client, so I'm using a context with
>
> context.verify_mode = ssl.CERT_REQUIRED
>
> But, I want all certificates accepted. How do I
I've got a small ssl server app. I want to require a certificate from
the client, so I'm using a context with
context.verify_mode = ssl.CERT_REQUIRED
But, I want all certificates accepted. How do I disable client
certificate verification?
--
Grant
--
https://mail.python.org/mailma
Hi,
I have a small problem using the M2Crypto for SSL certificate verification.
I have a client and a server who wants to get the certificates verified by
the other in order start the communication. I am able to get the server
certificate verified by the client but not the client certificate in t
On Sep 17, 7:33 pm, Seb <[EMAIL PROTECTED]> wrote:
> I'm making a ssl server, but I'm not sure how I can verify the
> clients. What do I actually need to place in _verify to actually
> verify that the client cert is signed by me?
>
> 50 class SSLTCPServer(TC
On Sep 18, 1:05 am, Michael Palmer <[EMAIL PROTECTED]> wrote:
> On Sep 17, 1:33 pm, Seb <[EMAIL PROTECTED]> wrote:
>
>
>
> > I'm making a ssl server, but I'm not sure how I can verify the
> > clients. What do I actually need to place in _verify to actu
On Sep 17, 10:53 pm, "Giampaolo Rodola'" <[EMAIL PROTECTED]> wrote:
> On 17 Set, 19:33, Seb <[EMAIL PROTECTED]> wrote:
>
>
>
> > I'm making a ssl server, but I'm not sure how I can verify the
> > clients. What do I actually need to pl
On Sep 17, 1:33 pm, Seb <[EMAIL PROTECTED]> wrote:
> I'm making a ssl server, but I'm not sure how I can verify the
> clients. What do I actually need to place in _verify to actually
> verify that the client cert is signed by me?
>
> 50 class SSLTCPServer(TC
On 17 Set, 19:33, Seb <[EMAIL PROTECTED]> wrote:
> I'm making a ssl server, but I'm not sure how I can verify the
> clients. What do I actually need to place in _verify to actually
> verify that the client cert is signed by me?
>
> 50 class SSLTCPServer(TC
I'm making a ssl server, but I'm not sure how I can verify the
clients. What do I actually need to place in _verify to actually
verify that the client cert is signed by me?
50 class SSLTCPServer(TCPServer):
51 keyFile = "sslcert/server.key"
52 certFile =
Hi, I need some help, I'm trying to create a script that will fill in
the forms on an ssl website, and submit them. Could anyone help me
out, examples would be nice.
Thanks in advance
--
http://mail.python.org/mailman/listinfo/python-list
On Fri, 22 Apr 2005 14:59:59 +0200, André Søreng <[EMAIL PROTECTED]> wrote:
I'm trying to create a SSL-enabled server in Python, and in the doc for
the socket module:
ssl(sock[, keyfile, certfile])
Initiate a SSL connection over the socket sock. keyfile is the name of
a PEM formatted
f
I'm trying to create a SSL-enabled server in Python, and in the doc for
the socket module:
ssl(sock[, keyfile, certfile])
Initiate a SSL connection over the socket sock. keyfile is the
name of a PEM formatted
file that contains your private key. certfile is a PEM formatted
certificate c
27 matches
Mail list logo
