[omniORB] More OpenSSL troubles

Piet van Oostrum piet at cs.uu.nl
Tue Apr 13 16:17:44 BST 2004


>>>>> Nicolas Pierre <pierre at lifc.univ-fcomte.fr> (NP) wrote:

NP> Hello
NP> I checked some features using the openSSL example.
NP> Using this example, I can use two different set of key/certificate, so both
NP> SSL environment wil be initiated, but none will be checked by the other.

NP> As It's shown in the example, I set the files and the password.
NP> On the client side, I use one set of key/certificate/password
NP> On the server side, I use another set.

NP> The same work also without only one side using SSL transport.
NP> If the set key/certificate/password is not proper (wrong password,
NP> corrupted certificate or key) it does not work as it can't decode the key,
NP> which is normal.

NP> Anyone experiencing the same thing, or using any way to perform a check
NP> from one side?

I think in the example the only check is whether the certificates are
valid. Any other check, like on the identity of the caller would have to
be added by the application.
-- 
Piet van Oostrum <piet at cs.uu.nl>
URL: http://www.cs.uu.nl/~piet [PGP]
Private email: P.van.Oostrum at hccnet.nl



More information about the omniORB-list mailing list