Re: {bb} bbgen & https test

To: bb@bb4.com
Subject: Re: {bb} bbgen & https test
From: Henrik Storner <henrik-bb@hswn.dk>
Date: Tue, 31 Aug 2004 09:12:42 +0000 (UTC)
Newsgroups: lists.bb
Organization: Linux Users Inc.
References: <cgk109$m7$1@voodoo.hswn.dk> <200408262236.i7QMaJi04388@corp.caslab.com> <cgmlrc$99o$1@voodoo.hswn.dk> <005c01c48ce2$b4ccba70$2b01d59f@pcma13319new> <002901c48e7e$e63edf00$2b01d59f@pcma13319new> <7eeb9e7f040830044147bda672@mail.gmail.com> <007601c48e8d$d9c92eb0$2b01d59f@pcma13319new> <7eeb9e7f040830061415c24cdc@mail.gmail.com> <002101c48f29$a5c24560$2b01d59f@pcma13319new>
Reply-to: bb@bb4.com
Sender: owner-bb@bb4.com
User-agent: nn/6.6.4

In <002101c48f29$a5c24560$2b01d59f@pcma13319new> "Marco Avvisano" <m.avvisano@mail.regione.toscana.it> writes:

>When i exec curl -ik from the command line it returme me these message:

>HTTP/1.1 404 Not found
>Server: Netscape-Enterprise/4.1
>Date: Tue, 31 Aug 2004 07:01:04 GMT
>Content-type: text/html
>Content-length: 142
>Content-type: text/html
>Connection: close

><HTML><HEAD><TITLE>Forbidden</TITLE></HEAD>
><BODY><H1>Forbidden</H1>
>Your client is not allowed to access the requested object.
></BODY></HTML>

What a weird server - it uses a "404" (not found) status code, but
the error text indicates a permission problem, so it really should
have returned a 401 (unauthorized) status code.

>So, i think that the problem is that the page is not accessible without the
>certificate.

Do I understand correct - this server requires a *client* certificate
for authorization ? I.e. each user is given an individual certificate,
which the user installs on his workstation before he is allowed to
access the website ? "curl -ik -E /path/to/cert https://www.foo.com/";
works ?

In that case I'm afraid this is not (yet) possible. bbgen does not
support client-certificate authorization, only the simple HTTP "Basic"
authorization method.

The curl library which bbgen 2.x uses does support client certificates
with the "-E / --cert" option. But this is not used by bbgen.

Looking at the OpenSSL docs it should not be too hard to implement.
Would you be willing to test it for me ? I don't have a server that
requires client certificates for authorization, so it would be
difficult for me to test.

Henrik
--
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-=-=-=-=-=-=-=-=
To unsubscribe from this list, or to subscribe to the bb-digest list
send e-mail to mailto:majordomo@bb4.com with unsubscribe bb -and/or-
subscribe bb-digest in the BODY of the message.

Follow-Ups:
- Re: {bb} bbgen & https test
  - From: Henrik Storner <henrik-bb@hswn.dk>

References:
- Re: {bb} Odd Text in BBGen Tests
  - From: Henrik Storner <henrik-bb@hswn.dk>
- RE: {bb} Odd Text in BBGen Tests
  - From: "Mike Sullivan" <msullivan@corp.caslab.com>
- Re: {bb} Odd Text in BBGen Tests
  - From: Henrik Storner <henrik-bb@hswn.dk>
- {bb} problems using Net SNMP
  - From: "Marco Avvisano" <m.avvisano@mail.regione.toscana.it>
- {bb} bbgen & https test
  - From: "Marco Avvisano" <m.avvisano@mail.regione.toscana.it>
- Re: {bb} bbgen & https test
  - From: Ben Pitzer <bpitzer@gmail.com>
- Re: {bb} bbgen & https test
  - From: "Marco Avvisano" <m.avvisano@mail.regione.toscana.it>
- Re: {bb} bbgen & https test
  - From: Ben Pitzer <bpitzer@gmail.com>
- Re: {bb} bbgen & https test
  - From: "Marco Avvisano" <m.avvisano@mail.regione.toscana.it>

Prev by Date: {bb} FW: Recovery messages without alerts
Next by Date: RE: {bb} Larrd apache script
Previous by thread: Re: {bb} bbgen & https test
Next by thread: Re: {bb} bbgen & https test
Index(es):
- Date
- Thread

Home | Main Index | Thread Index