CURLOPT_SSL_VERIFYSTATUS(3) curl_easy_setopt options CURLOPT_SSL_VERIFYSTATUS(3)NAME
CURLOPT_SSL_VERIFYSTATUS - verify the certificate's status
SYNOPSIS
#include <curl/curl.h>
CURLcode curl_easy_setopt(CURL *handle, CURLOPT_SSL_VERIFYSTATUS, long verify);
DESCRIPTION
Pass a long as parameter set to 1 to enable or 0 to disable.
This option determines whether libcurl verifies the status of the server cert using the "Certificate Status Request" TLS extension (aka.
OCSP stapling).
Note that if this option is enabled but the server does not support the TLS extension, the verification will fail.
DEFAULT
0
PROTOCOLS
All TLS based protocols: HTTPS, FTPS, IMAPS, POP3S, SMTPS etc.
EXAMPLE
TODO
AVAILABILITY
Added in 7.41.0. This option is currently only supported by the OpenSSL, GnuTLS and NSS TLS backends.
RETURN VALUE
Returns CURLE_OK if OCSP stapling is supported by the SSL backend, otherwise returns CURLE_NOT_BUILT_IN.
SEE ALSO CURLOPT_SSL_VERIFYHOST(3), CURLOPT_SSL_VERIFYPEER(3), CURLOPT_CAINFO(3),
libcurl 7.54.0 February 03, 2016 CURLOPT_SSL_VERIFYSTATUS(3)
Check Out this Related Man Page
CURLOPT_CAINFO(3) curl_easy_setopt options CURLOPT_CAINFO(3)NAME
CURLOPT_CAINFO - path to Certificate Authority (CA) bundle
SYNOPSIS
#include <curl/curl.h>
CURLcode curl_easy_setopt(CURL *handle, CURLOPT_CAINFO, char *path);
DESCRIPTION
Pass a char * to a zero terminated string naming a file holding one or more certificates to verify the peer with.
If CURLOPT_SSL_VERIFYPEER(3) is zero and you avoid verifying the server's certificate, CURLOPT_CAINFO(3) need not even indicate an accessi-
ble file.
This option is by default set to the system path where libcurl's cacert bundle is assumed to be stored, as established at build time.
If curl is built against the NSS SSL library, the NSS PEM PKCS#11 module (libnsspem.so) needs to be available for this option to work prop-
erly.
(iOS and macOS only) If curl is built against Secure Transport, then this option is supported for backward compatibility with other SSL
engines, but it should not be set. If the option is not set, then curl will use the certificates in the system and user Keychain to verify
the peer, which is the preferred method of verifying the peer's certificate chain.
The application does not have to keep the string around after setting this option.
DEFAULT
Built-in system specific
PROTOCOLS
All TLS based protocols: HTTPS, FTPS, IMAPS, POP3S, SMTPS etc.
EXAMPLE
TODO
AVAILABILITY
For SSL engines that don't support certificate files the CURLOPT_CAINFO option is ignored. Refer to https://curl.haxx.se/docs/ssl-com-
pared.html
RETURN VALUE
Returns CURLE_OK if the option is supported, CURLE_UNKNOWN_OPTION if not, or CURLE_OUT_OF_MEMORY if there was insufficient heap space.
SEE ALSO CURLOPT_CAPATH(3), CURLOPT_SSL_VERIFYPEER(3), CURLOPT_SSL_VERIFYHOST(3),
libcurl 7.54.0 December 21, 2016 CURLOPT_CAINFO(3)
Hi. One of my company's customers requires mails to be sent to them to use TLS. Thanks to some good documentation on the web, I've got this mostly figured out, but now I'm stuck at generating the CSR.
My company's mail domain is sg.bunny.com (not real address, obviously), but the email gateway... (0 Replies)
Hi,
I am getting below error when I do
-------------------------------
curl: (60) SSL certificate problem, verify that the CA cert is OK. Details:
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
More details here: cURL - Details on Server SSL Certificates... (5 Replies)
Hi,
I am using ndmcli to send files from one solaris server to another one.
I use the below one in script and verify the status.
select stat det=yes pnum="$PNUM"
Is there any option to automate in script in verifying destination size with source after doing NDM? :mad: (10 Replies)
We are running HP-UX 11v1 and are about to upgrade sendmail to 8.13.3 to allow support for TLS. Enabling TLS seems pretty straightforward, but I'm wondering if an SSL certificate is required for this. Our MS Exchange server does use a certificate. Do I need to arrange for a public certificate to... (3 Replies)
Hi All,
I am new to SHell scripting, can someone please help me with the below requirement.
1) LFTP a file to a remote server which supports FTPS. My current enviroment is Sun Solaris 5.10
2) I need to incorporate this in a shell which is currently sending files to a server that accepts... (1 Reply)
I have a requirement for which I had to connect to a server using FTPS. I have been provided with these,
connection method: FTPS
Server Name
Port for explicit and implicit
Login user
I would like to know the FTPS command/script in order to connect to there server and get a file.
... (5 Replies)
Hi,
I have to upload a file to a remote Citrix Sharefile server using implicit FTPS. But the problem I'm facing is that when the FTPS UNIX script is called through a GUI tool; it keeps on running and after forcibly killing that job, if I try to connect the same server directly from the UNIX box... (1 Reply)
Hi,
I am working on an application which runs on an Informatica Red-Hat 5.10 Linux Server.
The application involves several Informatica ETL workflows which generate 100s of Text files with lot of data. Many of the files will each be up to 5 GB in size.
Currently the Informatica server itself... (7 Replies)