cURL / Mailing Lists / curl-library / Single Mail

curl-library

How are https messages are being encrypted when no certificates are installed at the client?

From: T A <tedaetc_at_yahoo.com>
Date: Wed, 3 Aug 2005 10:50:42 -0700 (PDT)

Hi,
 
Does anyone have any insight into how the messages are being encrypted in the case where
you tell libcurl to *not* verify the peer ( With libcurl you disable with with curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, FALSE); With the curl command line tool, you disable this with -k/--insecure.)
 
If no certificates are installed / being used in the above case at the client, how is encryption being done given that the certificates also include information about key encryption? Does the server download something to the client for use on the transaction?
 
Thanks
Ted
 

 

                
---------------------------------
 Start your day with Yahoo! - make it your home page
Received on 2005-08-03