CURLOPT_SSL_OPTIONS(3) curl_easy_setopt options CURLOPT_SSL_OPTIONS(3)NAME
CURLOPT_SSL_OPTIONS - set SSL behavior options
SYNOPSIS
#include <curl/curl.h>
CURLcode curl_easy_setopt(CURL *handle, CURLOPT_SSL_OPTIONS, long bitmask);
DESCRIPTION
Pass a long with a bitmask to tell libcurl about specific SSL behaviors.
CURLSSLOPT_ALLOW_BEAST tells libcurl to not attempt to use any workarounds for a security flaw in the SSL3 and TLS1.0 protocols. If this
option isn't used or this bit is set to 0, the SSL layer libcurl uses may use a work-around for this flaw although it might cause interop-
erability problems with some (older) SSL implementations. WARNING: avoiding this work-around lessens the security, and by setting this
option to 1 you ask for exactly that. This option is only supported for DarwinSSL, NSS and OpenSSL.
Added in 7.44.0:
CURLSSLOPT_NO_REVOKE tells libcurl to disable certificate revocation checks for those SSL backends where such behavior is present. Cur-
rently this option is only supported for WinSSL (the native Windows SSL library), with an exception in the case of Windows' Untrusted Pub-
lishers blacklist which it seems can't be bypassed. This option may have broader support to accommodate other SSL backends in the future.
https://curl.haxx.se/docs/ssl-compared.html
DEFAULT
0
PROTOCOLS
All TLS-based protocols
EXAMPLE
TODO
AVAILABILITY
Added in 7.25.0
RETURN VALUE
Returns CURLE_OK if the option is supported, and CURLE_UNKNOWN_OPTION if not.
SEE ALSO CURLOPT_SSLVERSION(3), CURLOPT_SSL_CIPHER_LIST(3),
libcurl 7.54.0 February 03, 2016 CURLOPT_SSL_OPTIONS(3)
Check Out this Related Man Page
CURLOPT_CERTINFO(3) curl_easy_setopt options CURLOPT_CERTINFO(3)NAME
CURLOPT_CERTINFO - request SSL certificate information
SYNOPSIS
#include <curl/curl.h>
CURLcode curl_easy_setopt(CURL *handle, CURLOPT_CERTINFO, long certinfo);
DESCRIPTION
Pass a long set to 1 to enable libcurl's certificate chain info gatherer. With this enabled, libcurl will extract lots of information and
data about the certificates in the certificate chain used in the SSL connection. This data may then be retrieved after a transfer using
curl_easy_getinfo(3) and its option CURLINFO_CERTINFO(3).
DEFAULT
0
PROTOCOLS
All TLS-based
EXAMPLE
TODO
AVAILABILITY
This option is supported by the OpenSSL, GnuTLS, NSS and GSKit backends.
RETURN VALUE
Returns CURLE_OK if the option is supported, and CURLE_UNKNOWN_OPTION if not.
SEE ALSO CURLOPT_CAINFO(3), CURLOPT_SSL_VERIFYPEER(3),
libcurl 7.54.0 February 03, 2016 CURLOPT_CERTINFO(3)
I am not a C programmer, so I was hoping someone can help with the following: vsftpd is programmed in C, but it has a fatal flaw whereby uploads can be copied by Samba before the upload is complete (this includes the latest vsftpd daemon) This is because vsftpd does not support file locking, unlike... (2 Replies)
Hello,
I recently had a Retina scan of my system and there are some findings I do not understand.
SSL Week Cipher Strength Supported - Retina has detected that the targeted SSL Service supports a cryptographically weak cipher strength... Disable ciphers that support less than 128-bit... (4 Replies)
Hi all,
I have been researching to obtain SSL certification expiry for most of our webistes. For some cases, some hosts where not directly accessible so i finally got a solution working with curl using my proxy. This lists the expiry date which i'm finally looking for.
# curl --proxy... (4 Replies)