Re: [PATCH] support for server name indication (RFC 4366)
Date: Fri, 15 Feb 2008 03:47:30 +0100
> [...] in fact SNI makes things more secure rather than less because the user
> can now also verify SNI hosts rather than beeing forced to use --insecure mode.
Yes, with SNI, named virtual hosts will have a better or easier way to
provide an encrypted connection. And this is the reason why now I do
support inclusion of the SNI TLS extension in both curl and libcurl
active as default.
But I still want an option to disable it.
-- -=[Yang]=-Received on 2008-02-15