RE: SSL connection issues

["Wilt, Charles" <WiltC@xxxxxxxxxx>]

> Our business partner has specific requirements that we must 
> fulfill in terms of security.  One of them is that we examine 
> the certificate returned and if the address in it (the 
> hostname.com part) does not match their web address, then we 
> need to reject the transaction as false.  The only way I can 
> see this occurring is if the cert is from a trusted authority 
> that is spoofing our business partner.  That seems unlikely, 
> but it's their requirement, nonetheless.

Isn't this check part of the validation done by the OS when accepting the certificate?

Seems like it wouldn't make much sense otherwise.

Perhaps you don't need to do anything else in your application, simply provide documentation about
what OS/400 is doing for you.

Charles


This e-mail transmission contains information that is intended to be confidential and privileged.  If you receive this e-mail and you are not a named addressee you are hereby notified that you are not authorized to read, print, retain, copy or disseminate this communication without the consent of the sender and that doing so is prohibited and may be unlawful.  Please reply to the message immediately by informing the sender that the message was misdirected.  After replying, please delete and otherwise erase it and any attachments from your computer system.  Your assistance in correcting this error is appreciated.
-----------------------------------------------------------------------
This is the FTPAPI mailing list.  To unsubscribe, please go to:
http://www.scottklement.com/mailman/listinfo/ftpapi
-----------------------------------------------------------------------