cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, FALSE);

From: Daniel Stenberg <daniel-curl_at_haxx.se>
Date: Tue, 26 Oct 2004 10:03:24 +0200 (CEST)

On Tue, 26 Oct 2004, [big5] ��ӹF wrote:

> Is there any security operation if I write "curl_easy_setopt(curl,
> CURLOPT_SSL_VERIFYPEER, FALSE);", after I read the doc about this option, I
> know it will not verify the server side certificate when estabilish
> connection. If so, if I transfer some data by this connection will it be
> protected ?

When not verifying the peer, you don't know that the peer is who it claims to
be, so you may in fact communicate with an impostor.

So yes, you will still get a SSL connection that is encrypted, but you may be
talking to someone else than you think it is.

-- 
      Daniel Stenberg -- http://curl.haxx.se -- http://daniel.haxx.se
       Dedicated custom curl help for hire: http://haxx.se/curl.html

Received on 2004-10-26

This message: [ Message body ]
Next message: Daniel Stenberg: "Re: connect failed if set socket non-blocking,why?"
Previous message: Daniel Stenberg: "Re: FTP over ssl error"
In reply to: ��ӹF: "curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, FALSE);"
Next in thread: ��ӹF: "Re: curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, FALSE);"
Reply: ��ӹF: "Re: curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, FALSE);"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]