CURLOPT_SSL_VERIFYSTATUS(3) curl_easy_setopt options CURLOPT_SSL_VERIFYSTATUS(3)NAME
CURLOPT_SSL_VERIFYSTATUS - verify the certificate's status
SYNOPSIS
#include <curl/curl.h>
CURLcode curl_easy_setopt(CURL *handle, CURLOPT_SSL_VERIFYSTATUS, long verify);
DESCRIPTION
Pass a long as parameter set to 1 to enable or 0 to disable.
This option determines whether libcurl verifies the status of the server cert using the "Certificate Status Request" TLS extension (aka.
OCSP stapling).
Note that if this option is enabled but the server does not support the TLS extension, the verification will fail.
DEFAULT
0
PROTOCOLS
All TLS based protocols: HTTPS, FTPS, IMAPS, POP3S, SMTPS etc.
EXAMPLE
TODO
AVAILABILITY
Added in 7.41.0. This option is currently only supported by the OpenSSL, GnuTLS and NSS TLS backends.
RETURN VALUE
Returns CURLE_OK if OCSP stapling is supported by the SSL backend, otherwise returns CURLE_NOT_BUILT_IN.
SEE ALSO CURLOPT_SSL_VERIFYHOST(3), CURLOPT_SSL_VERIFYPEER(3), CURLOPT_CAINFO(3),
libcurl 7.54.0 February 03, 2016 CURLOPT_SSL_VERIFYSTATUS(3)
Check Out this Related Man Page
CURLOPT_PROXY_SSL_VERIFYHOST(3) curl_easy_setopt options CURLOPT_PROXY_SSL_VERIFYHOST(3)NAME
CURLOPT_PROXY_SSL_VERIFYHOST - verify the proxy certificate's name against host
SYNOPSIS
#include <curl/curl.h>
CURLcode curl_easy_setopt(CURL *handle, CURLOPT_PROXY_SSL_VERIFYHOST, long verify);
DESCRIPTION
Pass a long set to 2L as asking curl to verify in the HTTPS proxy's certificate name fields against the proxy name.
This option determines whether libcurl verifies that the proxy cert contains the correct name for the name it is known as.
When CURLOPT_PROXY_SSL_VERIFYHOST(3) is 2, the proxy certificate must indicate that the server is the proxy to which you meant to connect
to, or the connection fails.
Curl considers the proxy the intended one when the Common Name field or a Subject Alternate Name field in the certificate matches the host
name in the proxy string which you told curl to use.
When the verify value is 1L, curl_easy_setopt will return an error and the option value will not be changed due to old legacy reasons.
When the verify value is 0L, the connection succeeds regardless of the names used in the certificate. Use that ability with caution!
See also CURLOPT_PROXY_SSL_VERIFYPEER(3) to verify the digital signature of the proxy certificate. If libcurl is built against NSS and
CURLOPT_PROXY_SSL_VERIFYPEER(3) is zero, CURLOPT_PROXY_SSL_VERIFYHOST(3) is also set to zero and cannot be overridden.
DEFAULT
2
PROTOCOLS
All protocols when used over a HTTPS proxy.
EXAMPLE
CURL *curl = curl_easy_init();
if(curl) {
curl_easy_setopt(curl, CURLOPT_URL, "https://example.com");
/* Set the default value: strict name check please */
curl_easy_setopt(curl, CURLOPT_PROXY_SSL_VERIFYHOST, 2L);
curl_easy_perform(curl);
}
AVAILABILITY
Added in 7.52.0.
If built TLS enabled.
RETURN VALUE
Returns CURLE_OK if TLS is supported, and CURLE_UNKNOWN_OPTION if not.
If 1 is set as argument, CURLE_BAD_FUNCTION_ARGUMENT is returned.
SEE ALSO CURLOPT_PROXY_SSL_VERIFYPEER(3), CURLOPT_PROXY_CAINFO(3), , CURLOPT_SSL_VERIFYPEER(3), CURLOPT_CAINFO(3), ,
libcurl 7.54.0 December 16, 2016 CURLOPT_PROXY_SSL_VERIFYHOST(3)
Hi. One of my company's customers requires mails to be sent to them to use TLS. Thanks to some good documentation on the web, I've got this mostly figured out, but now I'm stuck at generating the CSR.
My company's mail domain is sg.bunny.com (not real address, obviously), but the email gateway... (0 Replies)
Hi,
I am getting below error when I do
-------------------------------
curl: (60) SSL certificate problem, verify that the CA cert is OK. Details:
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
More details here: cURL - Details on Server SSL Certificates... (5 Replies)
Hi,
I am using ndmcli to send files from one solaris server to another one.
I use the below one in script and verify the status.
select stat det=yes pnum="$PNUM"
Is there any option to automate in script in verifying destination size with source after doing NDM? :mad: (10 Replies)
We are running HP-UX 11v1 and are about to upgrade sendmail to 8.13.3 to allow support for TLS. Enabling TLS seems pretty straightforward, but I'm wondering if an SSL certificate is required for this. Our MS Exchange server does use a certificate. Do I need to arrange for a public certificate to... (3 Replies)
Hi All,
I am new to SHell scripting, can someone please help me with the below requirement.
1) LFTP a file to a remote server which supports FTPS. My current enviroment is Sun Solaris 5.10
2) I need to incorporate this in a shell which is currently sending files to a server that accepts... (1 Reply)
I have a requirement for which I had to connect to a server using FTPS. I have been provided with these,
connection method: FTPS
Server Name
Port for explicit and implicit
Login user
I would like to know the FTPS command/script in order to connect to there server and get a file.
... (5 Replies)
Hi,
I have to upload a file to a remote Citrix Sharefile server using implicit FTPS. But the problem I'm facing is that when the FTPS UNIX script is called through a GUI tool; it keeps on running and after forcibly killing that job, if I try to connect the same server directly from the UNIX box... (1 Reply)
Hi,
I am working on an application which runs on an Informatica Red-Hat 5.10 Linux Server.
The application involves several Informatica ETL workflows which generate 100s of Text files with lot of data. Many of the files will each be up to 5 GB in size.
Currently the Informatica server itself... (7 Replies)