Re: Error code interpretation
Date: Fri, 9 Jun 2006 14:30:50 +0200 (CEST)
On Fri, 9 Jun 2006, Dave Pawson wrote:
>> No (unless "we" are the ones who admin the server). curl failed to verify
>> the server's certificate using its CA cert bundle.
> Sorry if I'm asking basic questions, I am new to this world.
> Am I right in thinking that curl obtained a certificate from the server,
> which failed to match up to the one in xpilkeys.pem ?
No. You need to keep all certificates apart. There's the server certificate
(which all servers doing SSL must have), there's a bundle a CA certs used to
verify the server's cerficiate, and there's (optionally) a client certificate
that the server can use to verify you.
> I thought I was overriding the 'standard' location for the CA cert bundle by
> specifying the file holding the certificate? Is that right please?
Yes, you can override the default CA cert path with the --cacert option. You
used the --cert option which provides a client certificate.
-- Commercial curl and libcurl Technical Support: http://haxx.se/curl.htmlReceived on 2006-06-09