Browse files

Adjust advice about how to enable https support

  • Loading branch information...
1 parent 31278a5 commit 7fb9facb65f3f1d81f6b09cf461192d6a8343d4d @gisle committed Mar 26, 2011
Showing with 9 additions and 13 deletions.
  1. +1 −2 README
  2. +8 −11 lib/LWP/
@@ -36,8 +36,7 @@ libwww-perl:
If you want to access sites using the https protocol, then you need to
-install the IO::Socket::SSL module or the Crypt::SSLeay module. The
-README.SSL file will tell you more about how libwww-perl supports SSL.
+install the LWP::Protocol::https module from CPAN.
@@ -177,12 +177,11 @@ sub send_request
$@ =~ s/ at .* line \d+.*//s; # remove file/line number
$response = _new_response($request, &HTTP::Status::RC_NOT_IMPLEMENTED, $@);
if ($scheme eq "https") {
- $response->message($response->message . " (IO::Socket::SSL not installed)");
+ $response->message($response->message . " (LWP::Protocol::https not installed)");
-LWP will support https URLs if either IO::Socket::SSL or Crypt::SSLeay
-is installed. More information at
+LWP will support https URLs if the LWP::Protocol::https module
+is installed.
@@ -1355,10 +1354,10 @@ The options that LWP relates to are:
When TRUE LWP will for secure protocol schemes ensure it connects to servers
that have a valid certificate matching the expected hostname. If FALSE no
checks are made and you can't be sure that you communicate with the expected peer.
-The no checks behaviour was the default for libwww-perl-5.837 and older.
+The no checks behaviour was the default for libwww-perl-5.837 and earlier releases.
This option is initialized from the L<PERL_LWP_SSL_VERIFY_HOSTNAME> environment
-variable. If the this envirionment variable isn't set; then C<verify_hostname>
+variable. If this envirionment variable isn't set; then C<verify_hostname>
defaults to 1.
=item C<SSL_ca_file> => $path
@@ -1379,11 +1378,9 @@ variables C<PERL_LWP_SSL_CA_PATH> and C<HTTPS_CA_DIR> in order.
Other options can be set and are processed directly by the SSL Socket implementation
in use. See L<IO::Socket::SSL> or L<Net::SSL> for details.
-If hostname verification is requested, and neither C<SSL_ca_file> nor
-C<SSL_ca_path> is set, then C<SSL_ca_file> is implied to be the one
-provided by L<Mozilla::CA>. If the Mozilla::CA module isn't available
-SSL requests will fail. Either install this module, set up an alternative
-SSL_ca_file or disable hostname verification.
+The libwww-perl core no longer bundles protocol plugins for SSL. You will need
+to install L<LWP::Protocol::https> separately to enable support for processing

0 comments on commit 7fb9fac

Please sign in to comment.