cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: Server certificate validation

From: Daniel Stenberg <daniel_at_haxx.se>
Date: Fri, 26 Jul 2002 13:06:37 +0200 (MET DST)

On Mon, 1 Jul 2002, Bram Whillock wrote:

> It seems that the curl library provides functionality only to verify
> a peer certificate via some pre-existing CA directives, but doesn't provide
> functionality to do any extended handling of the certificate the server
> returns to the client during the ssl handshake. I need to have the ability
> to do prompt the user to save new certificates, as well as to tell when a
> known certificate may have changed (man in the middle attack perhaps).
> I'd like to add the feature to the curl library to do a callback to a
> user-defined function(int callback(SSL*) perhaps) to override the default
> certificate behavior. I was wondering if anyone is or is planning to do
> anything of this sort. Thanks.

I think it sounds like a good idea to add such a callback. I am not aware of
anyone else having this intention.

Let me know if you need info on any details!

-- 
  Cheers,
  Daniel Stenberg
-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf

Received on 2002-07-26

This message: [ Message body ]
Next message: Daniel Stenberg: "Re: hostcache bug"
Previous message: Daniel Stenberg: "Re: "common symbols" in libcurl.a?"
In reply to: Bram Whillock: "Server certificate validation"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]