On Nov 20, 2007 6:27 PM, Francis Cianfrocca <garbagecat10 at gmail.com>
wrote:
> On Nov 20, 2007 6:20 PM, Michael S. Fischer <michael at dynamine.net>
wrote:
> > Hi Francis,
> >
> > I''d really like to be able to verify the peer certificate as
part of the
> > start_tls handshake. Do you have any plans to add this functionality
in
> the
> > immediate future?
>
> Yeah. Do you need to verify peer certs received from clients?
That''s a
> relatively unusual requirement :-)
Yes. The clients run jobs on behalf of users, the parameters of which are
sent by a central server. We can''t just have any old SSL client
connecting
to the server and receiving another user''s password, you know. :-)
Granted, there are other ways to authenticate the client, but SSL works
nicely, and we get encryption for free.
Best regards,
--Michael
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
http://rubyforge.org/pipermail/eventmachine-talk/attachments/20071120/7b888777/attachment.html