curl / Mailing Lists / curl-library / Single Mail


Re: Change doc for --insecure to say it doesn't apply to HTTPS-proxy?

From: Isaac Boukris <>
Date: Mon, 6 Mar 2017 09:13:13 +0200

On Mar 6, 2017 7:20 AM, "Ray Satiro via curl-library" <> wrote:

--insecure [1] is documented as making all connections insecure:

'This option explicitly allows curl to perform "insecure" SSL
connections and transfers. All SSL connections are attempted to be made
secure by using the CA certificate bundle installed by default. This
makes all connections considered "insecure" fail unless -k, --insecure
is used.'

Since the HTTPS proxy changes that is no longer true. HTTPS-proxy
connections would need --proxy-insecure [2]. I wonder if the
documentation should be changed, for example:

Why has it changed, https-proxy secures the connectivity to the proxy, but
the inner host connection may still be insecure.

Received on 2017-03-06