On 6/6/07 3:01, "Christopher Odenbach" <[EMAIL PROTECTED]> wrote:
> still working on that. Net::SSLeay supports fetching the cn from the > certificate, but I am still looking for subjectAltName field support. I'll take a look. > This is nasty stuff. As far as I know the hostname has to be converted > to punycode and then compared to the hostname. Right? Do you know of > any clever library that already does this? Is there anything under Net::IDN in CPAN that would help? I thought I found something else on CPAN, but it was only an interface onto some unusual GNU library, so not something that could be easily relied upon. >> I think the subjectAltName check is pretty important. > > Do you know any public available server with such a certificate? Would > make things easier to develop. I don't, though Kurt may do. I can always set up a server set up that way and poke some holes in our firewall for you to test against. Cheers, Chris
