Thursday, September 29, 2016
Adding a CA to curl
You have a few methods to ID where your pulling the CA listings from ;
1: Run curl in the verbose and look for the line CApath if present.
2: Run the curl command with a bad CAfile listing and look for the report CApath.
This will showing the pre-compiled CApath that cURL checks for CAs.
MACOSX uses the system keychain certificates for curl. You can override this behavior by specifying a cacertfile or pathfrom the CLI.
So if you want to add a certificate of a CA, just apply the file in the /etc/ssl/certs location in a PEM format. Most unix and linux deployments have the certificates of the CAs list a synbolic link to another directory.
Remember not all curl versions support the same features.
NSE ( network security expert) and Route/Switching Engineer
kfelix -----a----t---- socpuppets ---dot---com
=( @ @ )=
Posted by socpuppets at 2:20 PM