curl / Mailing Lists / curl-users / Single Mail

curl-users

Re: curl-users--insecure (Daniel Stenberg)

From: Alex Bligh via curl-users <curl-users_at_cool.haxx.se>
Date: Thu, 24 Aug 2017 12:26:19 +0200

> On 23 Aug 2017, at 15:28, Daniel Stenberg <daniel_at_haxx.se> wrote:
>
>> b) Take a leaf from ssh's book: add a simple mechanism for retrieving a server's certificate and adding it to a trust store.
>
> That's indeed an interesting idea! That's a long list of issues to deal with though, that are things that makes this much more complicated than the "easy" case ssh has with known hosts.

Even a --getcert flag which retrieves the cert, and a --manualcert flag which accepts that particular cert (or similar) would be helpful. I don't think that should be much harder than specifying ones own trust store to the SSL library.

-- 
Alex Bligh
-----------------------------------------------------------
Unsubscribe: https://cool.haxx.se/list/listinfo/curl-users
Etiquette:   https://curl.haxx.se/mail/etiquette.html

Received on 2017-08-24

This message: [ Message body ]
Next message: Timothe Litt: "Re: curl-users--insecure (Daniel Stenberg)"
Previous message: Ray Satiro via curl-users: "Anyone building curl for amigaos, classic mac, os400, riscos, symbian?"
In reply to: Daniel Stenberg: "Re: curl-users--insecure (Daniel Stenberg)"
Next in thread: Timothe Litt: "Re: curl-users--insecure (Daniel Stenberg)"
Reply: Timothe Litt: "Re: curl-users--insecure (Daniel Stenberg)"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]