curl-library
Re: some more ca-bundle.crt thoughts and questions....
Date: Sun, 10 Feb 2008 12:49:31 +0100 (CET)
On Sun, 10 Feb 2008, Guenter Knauf wrote:
> when I look at the generated ca-bundle.crt I'm asking me for what all the
> textual info might be good for... so I tested a bit more, and removed them
> completely, and found that cURL is still happy with it! A ca-bundle.crt
> which only contains the CA issuer names and the certs itself is only 183kb
> in size while the one with text information is 542kb; so I would guess that
> a CA lookup in the 183kb bundle is a good part faster than in the 3 times
> bigger bundle, or is this a wrong guess?
I don't know how the SSL libraries deal with these, but I doubt this will
result in a 3 times faster lookup. However I don't think the textual info
included is used or read by anyone so we can probably just remove that by
default and instead offer it with (another) command line switch.
-- Commercial curl and libcurl Technical Support: http://haxx.se/curl.htmlReceived on 2008-02-10