Re: secure sockets
Re: secure sockets
- Subject: Re: secure sockets
- From: Quinn <email@hidden>
- Date: Wed, 9 Jul 2003 09:37:32 +0100
At 11:25 -0700 27/6/03, Michael Robinette wrote:
Until I try to do stuff with servers that have self-signed
certificates, or are otherwise untrusted. I don't suppose there's a
kCFStreamPropertySSLPerformsLaxSecurityChecks and siblings, eh?
There is a property (set with either CFReadStreamSetProperty or
CFWriteStreamSetProperty), but it's currently private.
For testing purposes only, you could reverse engineering it by
looking through the CFNetwork symbol list.
% nm /System/Library/Frameworks/CoreServices.framework/Frameworks/\
CFNetwork.framework/CFNetwork
Do not ship a product that uses private symbols.
I suppose I would have to dig into Security.framework to write an
SSL server anyway, but that's farther down on the list of things to
do.
Secure Transport, which is the SSL implementation used by CFNetwork,
has a number of calls that allow you to modify how security is
checked, including SSLSetEnableCertVerify and
SSLSetAllowsExpiredCerts.
S+E
--
Quinn "The Eskimo!" <
http://www.apple.com/developer/>
Apple Developer Technical Support * Networking, Communications, Hardware
_______________________________________________
macnetworkprog mailing list | email@hidden
Help/Unsubscribe/Archives:
http://www.lists.apple.com/mailman/listinfo/macnetworkprog
Do not post admin requests to the list. They will be ignored.