Perl Scripts Communicating with HTTPS Servers

PKI Tutorials - Herong's Tutorial Examples

∟Perl Scripts Communicating with HTTPS Servers

This chapter provides tutorial notes and example codes on writing Perl scripts communicating with HTTPS servers. Topics include using LWP library without Crypt::SSLeay; installing Crypt::SSLeay module; using setting HTTPS_CA_FILE environment variable to verify server's certificates; concatenating multiple CA certificates in a single PEM file.

Installing Crypt::SSLeay 0.72 on Windows

LWP Library Supports HTTPS

LWP SSL verify_hostname Setting

LWP SSL List of Root CA Certificates

Crypt::SSLeay Test Perl Script

HTTPS Request and Response Example

Asking Crypt::SSLeay to Verify Server's Certificate

Crypt::SSLeay Failing to Verify Server's Certificate

Multiple CA Certificates in a Single File

Conclusions:

Crypt::SSLeay is not needed anymore if you are using LWP 6.02 or higher.
LWP library support 3 SSL options: PERL_LWP_SSL_VERIFY_HOSTNAME, PERL_LWP_SSL_CA_PATH, and PERL_LWP_SSL_CA_FILE.
Crypt::SSLeay is a Perl module that allows you to write Perl scripts to communicate with HTTPS servers.
Crypt::SSLeay works behind the LWP::UserAgent module to support HTTPS GET, HEAD and POST operations in the same way as HTTP GET, HEAD and POST operations.
Crypt::SSLeay does not verify server's certificate by default.
Crypt::SSLeay verifies server's certificate only when the "HTTPS_CA_FILE" environment is defined.
Multiple CA certificates can be specified to HTTPS_CA_FILE in a single PEM formatted file.