Yes it contains # If the WebKDC is localhost, disable LWP certificate verification. The # WebKDC will have a certificate matching its public name, which will never # match localhost, and we should be able to trust the server when connecting # directly to localhost. if ($WebKDC::Config::URL =~ m,^https://localhost/,) { $ENV{PERL_LWP_SSL_VERIFY_HOSTNAME} = 0; }
2012/11/7 Russ Allbery <ea...@windlord.stanford.edu> > James James <jre...@gmail.com> writes: > > > [Wed Nov 07 22:03:45 2012] [error] [client 192.168.0.182] FastCGI: server > > "/usr/local/webkdc/share/weblogin/login.fcgi" stderr: 500 Can't connect > to > > localhost:443 (certificate verify failed) > > Could you double-check that the login.fcgi script that you're running > contains the following code near the top? > > # If the WebKDC is localhost, disable LWP certificate verification. The > # WebKDC will have a certificate matching its public name, which will never > # match localhost, and we should be able to trust the server when > connecting > # directly to localhost. > if ($WebKDC::Config::URL =~ m,^https://localhost/,) { > $ENV{PERL_LWP_SSL_VERIFY_HOSTNAME} = 0; > } > > -- > Russ Allbery <ea...@windlord.stanford.edu> > Technical Lead, ITS Infrastructure Delivery Group, Stanford University >
