cURL / Mailing Lists / curl-library / Single Mail


Re: [PATCH] support for server name indication (RFC 4366)

From: Yang Tse <>
Date: Fri, 15 Feb 2008 03:47:30 +0100


> [...] in fact SNI makes things more secure rather than less because the user
> can now also verify SNI hosts rather than beeing forced to use --insecure mode.

Yes, with SNI, named virtual hosts will have a better or easier way to
provide an encrypted connection. And this is the reason why now I do
support inclusion of the SNI TLS extension in both curl and libcurl
active as default.

But I still want an option to disable it.


Received on 2008-02-15