curl-users
RE: Disable curl CURLOPT_SSL_VERIFYHOST from command line
Date: Wed, 21 Jul 2010 15:26:08 -0400
>> Is it possible to disable CURLOPT_SSL_VERIFYHOST on the command line but
>> keep CURLOPT_SSL_VERIFYPEER enabled (ie not use -k)? I am using curl to
>> connect to a server that will not have a consistent hostname, but it will
>> always have a good certificate since we are running our own certificate
>> authority.
> Nope, curl only features the -k option and that disables both host name checks
> and the cert check.
> If you desire fancier checks, consider using a libcurl binding.
Thanks for the quick response! I guess I'll use my workaround for the issue.
In src/main.c line 5084 I changed:
my_setopt(curl, CURLOPT_SSL_VERIFYHOST, 2);
to:
my_setopt(curl, CURLOPT_SSL_VERIFYHOST, 0);
Which I think will solve it. We just have to always pass a CA cert to curl.
Christopher A Hotchkiss
JPMorgan Chase & Co. - Navy Cash Application Developer
Email christopher.a.hotchkiss_at_jpmchase.com
This communication is for informational purposes only. It is not
intended as an offer or solicitation for the purchase or sale of
any financial instrument or as an official confirmation of any
transaction. All market prices, data and other information are not
warranted as to completeness or accuracy and are subject to change
without notice. Any comments or statements made herein do not
necessarily reflect those of JPMorgan Chase & Co., its subsidiaries
and affiliates.
This transmission may contain information that is privileged,
confidential, legally privileged, and/or exempt from disclosure
under applicable law. If you are not the intended recipient, you
are hereby notified that any disclosure, copying, distribution, or
use of the information contained herein (including any reliance
thereon) is STRICTLY PROHIBITED. Although this transmission and any
attachments are believed to be free of any virus or other defect
that might affect any computer system into which it is received and
opened, it is the responsibility of the recipient to ensure that it
is virus free and no responsibility is accepted by JPMorgan Chase &
Co., its subsidiaries and affiliates, as applicable, for any loss
or damage arising in any way from its use. If you received this
transmission in error, please immediately contact the sender and
destroy the material in its entirety, whether in electronic or hard
copy format. Thank you.
Please refer to http://www.jpmorgan.com/pages/disclosures for
disclosures relating to European legal entities.
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-users
FAQ: http://curl.haxx.se/docs/faq.html
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2010-07-21