CURLOPT_SSL_OPTIONS(3) curl_easy_setopt options CURLOPT_SSL_OPTIONS(3)NAME
CURLOPT_SSL_OPTIONS - set SSL behavior options
SYNOPSIS
#include <curl/curl.h>
CURLcode curl_easy_setopt(CURL *handle, CURLOPT_SSL_OPTIONS, long bitmask);
DESCRIPTION
Pass a long with a bitmask to tell libcurl about specific SSL behaviors.
CURLSSLOPT_ALLOW_BEAST tells libcurl to not attempt to use any workarounds for a security flaw in the SSL3 and TLS1.0 protocols. If this
option isn't used or this bit is set to 0, the SSL layer libcurl uses may use a work-around for this flaw although it might cause interop-
erability problems with some (older) SSL implementations. WARNING: avoiding this work-around lessens the security, and by setting this
option to 1 you ask for exactly that. This option is only supported for DarwinSSL, NSS and OpenSSL.
Added in 7.44.0:
CURLSSLOPT_NO_REVOKE tells libcurl to disable certificate revocation checks for those SSL backends where such behavior is present. Cur-
rently this option is only supported for WinSSL (the native Windows SSL library), with an exception in the case of Windows' Untrusted Pub-
lishers blacklist which it seems can't be bypassed. This option may have broader support to accommodate other SSL backends in the future.
https://curl.haxx.se/docs/ssl-compared.html
DEFAULT
0
PROTOCOLS
All TLS-based protocols
EXAMPLE
TODO
AVAILABILITY
Added in 7.25.0
RETURN VALUE
Returns CURLE_OK if the option is supported, and CURLE_UNKNOWN_OPTION if not.
SEE ALSO CURLOPT_SSLVERSION(3), CURLOPT_SSL_CIPHER_LIST(3),
libcurl 7.54.0 February 03, 2016 CURLOPT_SSL_OPTIONS(3)
Check Out this Related Man Page
CURLOPT_SSL_SESSIONID_CACHE(3) curl_easy_setopt options CURLOPT_SSL_SESSIONID_CACHE(3)NAME
CURLOPT_SSL_SESSIONID_CACHE - enable/disable use of the SSL session-ID cache
SYNOPSIS
#include <curl/curl.h>
CURLcode curl_easy_setopt(CURL *handle, CURLOPT_SSL_SESSIONID_CACHE,
long enabled);
DESCRIPTION
Pass a long set to 0 to disable libcurl's use of SSL session-ID caching. Set this to 1 to enable it. By default all transfers are done
using the cache enabled. While nothing ever should get hurt by attempting to reuse SSL session-IDs, there seem to be or have been broken
SSL implementations in the wild that may require you to disable this in order for you to succeed.
DEFAULT
1
PROTOCOLS
All TLS-based
EXAMPLE
TODO
AVAILABILITY
Added in 7.16.0
RETURN VALUE
Returns CURLE_OK if the option is supported, and CURLE_UNKNOWN_OPTION if not.
SEE ALSO CURLOPT_DNS_CACHE_TIMEOUT(3), CURLOPT_SSLVERSION(3),
libcurl 7.54.0 February 03, 2016 CURLOPT_SSL_SESSIONID_CACHE(3)
I am not a C programmer, so I was hoping someone can help with the following: vsftpd is programmed in C, but it has a fatal flaw whereby uploads can be copied by Samba before the upload is complete (this includes the latest vsftpd daemon) This is because vsftpd does not support file locking, unlike... (2 Replies)
Hello,
I recently had a Retina scan of my system and there are some findings I do not understand.
SSL Week Cipher Strength Supported - Retina has detected that the targeted SSL Service supports a cryptographically weak cipher strength... Disable ciphers that support less than 128-bit... (4 Replies)
Hi all,
I have been researching to obtain SSL certification expiry for most of our webistes. For some cases, some hosts where not directly accessible so i finally got a solution working with curl using my proxy. This lists the expiry date which i'm finally looking for.
# curl --proxy... (4 Replies)