Thanks Andres by your fast reply.
I'll try your idea.
Cheers.
On Thu, Feb 19, 2009 at 6:32 PM, Andres Riancho <andres.rian...@gmail.com>wrote:
> Cesar,
>
> 2009/2/19 cesar bourlot <cbour...@gmail.com>:
> > Hi list, this is my first post, please forgive my poor english.
> >
> > I'm having problems with dual SSL authentication (client side).
> > I put my cert.pem and my key.pem in every place I find like
> > ./core/data/url/handlers/certHTTPSHandler.py: key_file =
> > "/home/nn/key.pem"
> > ./core/data/url/handlers/certHTTPSHandler.py: cert_file =
> > "/home/nn/cert.pem"
> > (I have unshielded my key.pem for use no passwrd)
> > (my cert & key where created by the same CA than the server's certs)
> > But I can't make it to work. SSL can't make the handshake so it can't
> > connect.
> > Certainly I'm doing something wrong, but don't know what.
> >
> > The output:
> > ----------------
> > The target URL: https://xxxxxxxx is unreachable.
> > Error description: Too many retries when trying to get:
> https://xxxxxxxxxxxx
> > No URLs found by discovery.
> > Finished scanning process.
> >
> --------------------------------------------------------------------------------------------------------------
>
> That was a feature that I never finished and that won't be finished
> for a long time :(
> I think that you should use http://127.0.0.1:3333/ as your target in
> w3af, and create a tunnel from 3333:localhost to real_target.tld:443
>
> Cheers,
>
> > Thanks in advance.
> >
> > C.-
> >
> > --
> > Cesar R. Bourlot
> >
> >
> >
> ------------------------------------------------------------------------------
> > Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco,
> CA
> > -OSBC tackles the biggest issue in open source: Open Sourcing the
> Enterprise
> > -Strategies to boost innovation and cut costs with open source
> participation
> > -Receive a $600 discount off the registration fee with the source code:
> SFAD
> > http://p.sf.net/sfu/XcvMzF8H
> > _______________________________________________
> > W3af-users mailing list
> > W3af-users@lists.sourceforge.net
> > https://lists.sourceforge.net/lists/listinfo/w3af-users
> >
> >
>
>
>
> --
> Andres Riancho
> http://w3af.sourceforge.net/
> Web Application Attack and Audit Framework
>
--
Cesar R. Bourlot
------------------------------------------------------------------------------
Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA
-OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise
-Strategies to boost innovation and cut costs with open source participation
-Receive a $600 discount off the registration fee with the source code: SFAD
http://p.sf.net/sfu/XcvMzF8H
_______________________________________________
W3af-users mailing list
W3af-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/w3af-users
