curl-users
Re: Disable accepting MD5 certificates
Date: Tue, 2 Sep 2014 23:35:53 +0200 (CEST)
On Tue, 2 Sep 2014, Stephen Röttger wrote:
> I noticed that the curl command line tool on Linux is accepting MD5
> certificates and couldn't figure out how to disable this behavior.
Using which TLS backend? It think it should be possible to disable MD5-based
algorithms, like with the OpenSSL backend something like:
curl --ciphers "ALL!EXPORT!EXPORT40!EXPORT56!aNULL!LOW!RC4!MD5" [URL]
That is, the internal default with "!MD5" appended.
Docs for this: https://www.openssl.org/docs/apps/ciphers.html#
-- / daniel.haxx.se
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-users
FAQ: http://curl.haxx.se/docs/faq.html
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2014-09-02