[Freeswitch-users] mod_xml_curl and https
Alexander Haugg
Alexander.Haugg at c4b.de
Thu Mar 7 09:59:29 MSK 2013
Thanks for your Answer,
i had read the Wiki page bervor i ask the question ;-) and i had try all constellations of the possible configuration, without success.
I try to verify the certificate to openssl with the verify command, but on windows is the problem with the config path of open ssl. exists a solution for this?
Next step i will try it with several generated new certificates they will accepted from the .net sslsocket.
Von: freeswitch-users-bounces at lists.freeswitch.org [mailto:freeswitch-users-bounces at lists.freeswitch.org] Im Auftrag von Steven Ayre
Gesendet: Mittwoch, 6. März 2013 10:41
An: FreeSWITCH Users Help
Betreff: Re: [Freeswitch-users] mod_xml_curl and https
See http://wiki.freeswitch.org/wiki/Mod_xml_curl#.3Cbinding.3E_options
To verify the certificate you must set on the binding(s):
ssl-cacert-path = /etc/ssl/certs/ca-certificates.crt (assuming Linux)
enable-cacert-check = true
enable-ssl-verifyhost = true
The first is the file containing the CA certificates to verify that the certificate is signed by a trusted CA. The next tells it to do that check. The 3rd checks the common name matches that of the URL (without that any trusted signed certificate would be accepted, even on other URLs).
-Steve
On 6 March 2013 08:09, Alexander Haugg <Alexander.Haugg at c4b.de<mailto:Alexander.Haugg at c4b.de>> wrote:
hi all,
since view hours i try to make a https request to a c# sslstream class.
the same request works fine with the browser.
In my descriotion the freeswitch is the web client and the c# sslstream side is the server.
Is it possible to configure the xml_curl.config.xml to trust any server certificate and the certificate comes only from the server (the same that's working with the browser)?
With all configurations that i try the client sends an Encryptet Alert and a [Fin, ACK].
At the moment, the server side use a *.pfx cert gerneratet with openssl.
Thanks for your help.
_________________________________________________________________________
Professional FreeSWITCH Consulting Services:
consulting at freeswitch.org<mailto:consulting at freeswitch.org>
http://www.freeswitchsolutions.com
Official FreeSWITCH Sites
http://www.freeswitch.org
http://wiki.freeswitch.org
http://www.cluecon.com
FreeSWITCH-users mailing list
FreeSWITCH-users at lists.freeswitch.org<mailto:FreeSWITCH-users at lists.freeswitch.org>
http://lists.freeswitch.org/mailman/listinfo/freeswitch-users
UNSUBSCRIBE:http://lists.freeswitch.org/mailman/options/freeswitch-users
http://www.freeswitch.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.freeswitch.org/pipermail/freeswitch-users/attachments/20130307/c964ea91/attachment-0001.html
Join us at ClueCon 2011 Aug 9-11, 2011
More information about the FreeSWITCH-users
mailing list