|
|
php.net | support | documentation | report a bug | advanced search | search howto | statistics | random bug | login |
PatchesPull RequestsHistoryAllCommentsChangesGit/SVN commits
[2011-04-19 01:07 UTC] cataphract@php.net
-Type: Security
+Type: Documentation Problem
[2011-04-19 01:07 UTC] cataphract@php.net
[2011-12-07 05:28 UTC] frozenfire@php.net
[2011-12-07 05:29 UTC] frozenfire@php.net
[2011-12-07 05:29 UTC] frozenfire@php.net
-Status: Open
+Status: Closed
-Assigned To:
+Assigned To: frozenfire
|
|||||||||||||||||||||||||||
Copyright © 2001-2025 The PHP GroupAll rights reserved. |
Last updated: Wed Jul 02 11:01:36 2025 UTC |
Description: ------------ self signed certificates seem to be accepted when using the protocol wrappers regardless of the allow_self_signed stream context the ftp package seems to reject self signed certificates however. Test script: --------------- $con=stream_context_create(array('ssl'=>array('allow_self_signed',false))); var_dump(file_get_contents('ftps://John:pass@selfsigned.example.com/test.php,false,$con')); $ftp=ftp_ssl_connect('selfsigned.example.com'); ftp_login($ftp,'John','pass'); Expected result: ---------------- file_get_contents and ftp_login should both throw some sort of error to the effect of "SSL/TLS handshake failed" Actual result: -------------- file_get_contents retrieves the file with no warnings ftp_login throws the error "SSL/TLS handshake failed"