We have a checkpoint firewall which requires authentication via https.
I wrote a perl script using Crypt::SSLeay, LWP (and openssl) which did
the authentication from the command line. It worked great for several
months, but recently has stopped working -- now it times out as it tries
to make the initial SSL connection. Here's the code:
$use LWP::UserAgent;
$url = 'https://our.firewall.server:950';
$ua = new LWP::UserAgent;
$req = new HTTP::Request 'GET',$url;
$res = $ua->request($req);
(and then I would go on to do several more get and post requests to get
authenticated)
Again, this worked for several months, but recently, the initial request
started timing out:
print $res->as_string;
500 (Internal Server Error) write timeout
Client-Date: Tue, 02 Jan 2001 16:09:51 GMT
(I did try several timeout values for the request, but it never
connected)
So, then I decided to run an stunnel to our.firewall.server:950, and
then use straight http requests (so I run the same code, but replace my
$url with localhost:someport) -- this works fine! So it seems there is
something going on with Crypt::SSLeay as it attempts to establish the
SSL connection that does not go wrong under stunnel. The only visible
change in the server is a new server certificate (it was issued in
November, and I started to notice the problem in early december).
I am using OpenSSL-0.9.5, Crypt::SSLeay 0.16-0.18 (tried all),
libwww-perl-5.47 on RedHat 6.2 and 7.0.
Any suggestions? I can just use stunnel, but I would like to know why
my script stopped working...
Thanks-
-Troy
--
Troy Carter
[EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
