cURL / Mailing Lists / curl-library / Single Mail


Fraudulent Certificates

From: Daniel Stenberg <>
Date: Thu, 24 Mar 2011 09:22:58 +0100 (CET)

Hi friends,

There's this incident that has been talked about the last couple of days where
"an attacker" managed to get several fraudulent SSL certificates for public

Chrome and Firefox now both block these certificates explicitly.

I assume there's reason for us to consider doing the same, to protect our
users who might use libcurl to access such sites.

I'll appreciate feedback and ideas.

More details:

List admin:
Received on 2011-03-24