> Both of your requests have been received on this list before,
> but so far no one has introduced a nice patch introducing them.
>
> I would say that Philippe Raoult has come closest, as he
> submitted a patch back in March that adds a callback for the
> certificate verification:
>
> http://curl.haxx.se/mail/lib-2003-03/0173.html
>
>(See that thread for my comments and why it wasn't applied, yet.)

Cool, thanks.

>I (and others) would certainly appreciate it!
>
>I guess Philippe's patch could be used as the basis, and then the tiny
>quirks could be smoothened and then we are game. At least that's what I
>think, I'll admit I haven't been investigating the patch very closely.

Ok, I'll take a look at that code and see if I can address the concerns.

I'm acually inclined for *my* purposes to try and just get hold of the certificate because what I'm looking to do is compare it to a
well-known certificate. But since that would happen after the response is already received and processed by libcurl, that would be a
security no-no for other apps, so it's probably best to do it as a supplemental or replacement verify callback.

-- Scott

-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
Received on 2003-04-30