cURL / Mailing Lists / curl-users / Single Mail

curl-users

Re: Verifying Server

From: William E. T. <triest.1_at_osu.edu>
Date: Wed, 28 Aug 2002 16:59:16 -0400

Daniel Stenberg wrote:

>On Wed, 28 Aug 2002, William E. T. wrote:
>
>
>
>>What I want to do is get a page VIA SSL, but I want to verify the
>>certificate.
>>
>>
>
>You mean you want curl to verify your peer's certificate, right? Many servers
>want a client certificate too to verify you.
>
Yes. Let's say I'm connecting to server my_secure_server.com, and I want
a secure connection and I want to verify that this server is
my_secure_server.com. How would I do this?

if I have a certificate, then do I need to pay anyone? (like a
certificate authority) otherwise couldn't anyone make-up a certificate?

>>I have no clue how to do this. I've seen functinos that mention a pem
>>file,
>>
>>
>
>PEM is a file format for certificates.
>
>
>
>>but haven't found a good way to get it (though I've seen them through
>>openSSL, under windows I can't pipe, and my dhcp server is liking my linux
>>instalation for some reason (liked it yesterday just fine).. IS there
>>anyway I can athenticate the certificate against the certificates
>>authoirity?
>>
>>
>
>If "the certificate" means the peer's certiciate, then --cacert or --capath
>are your friends.
>
>You need a CA certificate (bundle) though to verify the peer against.
>
>
>
A CA certificate (bungle)? Could you please elaborate? If you knows
good URLS I don't mind RTFMing I'mjust kinda lost on how to do this.

-------------------------------------------------------
This sf.net email is sponsored by: Jabber - The world's fastest growing
real-time communications platform! Don't just IM. Build it in!
http://www.jabber.com/osdn/xim
Received on 2002-08-28