cURL / Mailing Lists / curl-users / Single Mail


Re: Disable accepting MD5 certificates

From: Daniel Stenberg <>
Date: Tue, 2 Sep 2014 23:35:53 +0200 (CEST)

On Tue, 2 Sep 2014, Stephen Röttger wrote:

> I noticed that the curl command line tool on Linux is accepting MD5
> certificates and couldn't figure out how to disable this behavior.

Using which TLS backend? It think it should be possible to disable MD5-based
algorithms, like with the OpenSSL backend something like:

   curl --ciphers "ALL!EXPORT!EXPORT40!EXPORT56!aNULL!LOW!RC4!MD5" [URL]

That is, the internal default with "!MD5" appended.

Docs for this:


List admin:
Received on 2014-09-02