cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: curl bad verify SSL certificates

From: Bram Whillock <bwhilloc_at_andrew.cmu.edu>
Date: Mon, 19 Aug 2002 11:24:44 -0700

Just to clarify things here, ssl does establish a secure connection, no
doubt about that. What we're talking about here is certainty of
authentication of the remote host. You really can never be 100% certain
about this authentication because there are any number of ways here that the
remote host could have been compromised. Without using CA information to
verify the remote host, you cannot actually verify him because you have no
root certificates to authenticate his certificates. You could resolve the
spoofed server problem by checking to see if the only problem with the
certificates would have been the fact that you can't verify the root
certificate.

-------------------------------------------------------
This sf.net email is sponsored by: OSDN - Tired of that same old
cell phone? Get a new here for FREE!
https://www.inphonic.com/r.asp?r=sourceforge1&refcode1=vs3390
Received on 2002-08-19

This message: [ Message body ]
Next message: Cris Bailiff: "Re: curl bad verify SSL certificates"
Previous message: Daniel Stenberg: "Re: Spaces in URLs"
Next in thread: Cris Bailiff: "Re: curl bad verify SSL certificates"
Reply: Cris Bailiff: "Re: curl bad verify SSL certificates"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]