CURLOPT_SSL_OPTIONS: added
Allow an appliction to set libcurl specific SSL options. The first and only options supported right now is CURLSSLOPT_ALLOW_BEAST. It will make libcurl to disable any work-arounds the underlying SSL library may have to address a known security flaw in the SSL3 and TLS1.0 protocol versions. This is a reaction to us unconditionally removing that behavior after this security advisory: http://curl.haxx.se/docs/adv_20120124B.html ... it did however cause a lot of programs to fail because of old servers not liking this work-around. Now programs can opt to decrease the security in order to interoperate with old servers better.
Showing
- docs/libcurl/curl_easy_setopt.3 10 additions, 0 deletionsdocs/libcurl/curl_easy_setopt.3
- docs/libcurl/symbols-in-versions 2 additions, 0 deletionsdocs/libcurl/symbols-in-versions
- include/curl/curl.h 12 additions, 0 deletionsinclude/curl/curl.h
- lib/ssluse.c 4 additions, 1 deletionlib/ssluse.c
- lib/url.c 10 additions, 5 deletionslib/url.c
- lib/urldata.h 2 additions, 0 deletionslib/urldata.h
Loading
Please register or sign in to comment