RE: SSL connection issues

["Barry Shrum" <barry@xxxxxxxxxxxxxxx>]

Scott,

I wasn't actually asking for a change to HTTPAPI, but if that's possible
that would be great.  I don't have access to the client system just now and
I can't remember the exact wording in the debug log, but I need the URL
that's in it that shows who the certificate belongs to.

Thanks,

Barry

-----Original Message-----
From: ftpapi-bounces@xxxxxxxxxxxxxxxxxxxxxx
[mailto:ftpapi-bounces@xxxxxxxxxxxxxxxxxxxxxx]On Behalf Of Scott Klement
Sent: Monday, August 27, 2007 10:27 AM
To: HTTPAPI and FTPAPI Projects
Subject: Re: SSL connection issues


Hi Barry,

So it sounds like you're looking for an additional feature to be added
to HTTPAPI that will return the certificate information to your
application, correct?


Barry Shrum wrote:
> Our business partner has specific requirements that we must fulfill in
terms
> of security.  One of them is that we examine the certificate returned and
if
> the address in it (the hostname.com part) does not match their web
address,
> then we need to reject the transaction as false.  The only way I can see
> this occurring is if the cert is from a trusted authority that is spoofing
> our business partner.  That seems unlikely, but it's their requirement,
> nonetheless.
-----------------------------------------------------------------------
This is the FTPAPI mailing list.  To unsubscribe, please go to:
http://www.scottklement.com/mailman/listinfo/ftpapi
-----------------------------------------------------------------------

--
This message has been scanned and appears to be clean.

-----------------------------------------------------------------------
This is the FTPAPI mailing list.  To unsubscribe, please go to:
http://www.scottklement.com/mailman/listinfo/ftpapi
-----------------------------------------------------------------------