cURL Mailing List Monthly Index Single Mail
curl-library Mailing List Archives
Re: SSL Client authentication
From: Daniel Stenberg <daniel_at_haxx.se>
Date: Wed, 18 Apr 2001 10:01:14 +0200 (MET DST)
On Tue, 17 Apr 2001, Eric Rautman wrote:
> A question about client authentication using libcurl's
That's mainly because I never made it into two separate options. In fact,
> Does this concatenated file need to be stored at the server?
No. Curl is not a server-side tool. Curl acts as a client and all you need
> If so, isn't this a serious security risk?
Storing the private key and certificate can always be a security risk and you
> I thought the idea behind asymmetric encryption was to keep the private
The file needed by curl is made from the two files concatenated, yes. It
> Or is the cert stored at the server without the private key concat'ed?
Correct, the server end does not have your private key stored.
> Does libcurl send this concat'ed file to the server at client
The private key is used for the assymetric encryption in the SSL layer, the
-- Daniel Stenberg -- curl project maintainer -- http://curl.haxx.se/ _______________________________________________ Curl-library mailing list Curl-library_at_lists.sourceforge.net http://lists.sourceforge.net/lists/listinfo/curl-libraryReceived on 2001-04-18
These mail archives are generated by hypermail.
Page updated November 12, 2010.
web site info