On 11-10-12 21:05, Peter Sylvester wrote:
>> Please set CURLOPT_SSL_VERIFYPEER to 0L too. That will probably do the trick.
> disabling checks of authenticity is not exactly a good advice IMHO.

IMHO it's never a good idea disable any of the two. But who am I to judge on
disabling security features to make stuff work on request? ;-)

As I interpreted the original request it was only to satisfy the requirement
of making functional encrypted connection without security.

>> Creating a self-signed certificate in a more standardized way is not to
>> hard. There is sufficient information available that fits your working
>> environment in the best possible way.
> There is no such such thing as a 'more standardised' way.
> if one gets something different than snake oil without
> state and location ... :-)

LOL! Well, what I wished to imply here was to point to the certificate RFCs
and the requirements of a valid X.509 v3 certificate. Not having a subject
in a CA certificate will not make it an X.509v3 certificate with a CA
purpose. My apologies for the ill communication.

-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2012-10-12