All Questions
20 questions
1
vote
0
answers
204
views
Unable to cURL on some platforms, in particular DigitalOcean VPS
I am on Ubuntu 23.10 (GNU/Linux 6.5.0-27-generic x86_64) is not working, curl is 8.2.1 suspect is there is something on the machine.
I have two Virtual Private Servers (VPS) based on Digital Ocean ...
1
vote
1
answer
17k
views
How to tell curl to use one client cert from the Windows Cert Store?
Disclaimer: I am new to curl.
When I go to https://server.cryptomix.com/secure/ with Chrome, I am asked by Chrome to choose one client cert among the few ones I currently have in my Windows Cert Store....
- 63
1
vote
0
answers
7k
views
"failed to receive handshake, SSL/TLS connection failed" only when trying to access T-Mobile.com
I have 2 phones, 2 tablets, and 2 laptops can log into my account at T-Mobile with no issues.
My main PC, (Alienware R11 running Win11) cannot access my T-Mobile account. It gets an error when trying ...
- 11
0
votes
1
answer
3k
views
TLS1.2 still used despite forcing use of TLS1.0
I have a customer who is trying to connect to my company's FTP server and we have asked him to force the use of TLS1.0, which he has done through a curl request (curl version : 7.29.0). However, ...
0
votes
0
answers
3k
views
Debugging HTTP 403 Forbidden when using cURL for mutual authentication SSL (mTLS)
I'm a beginner in security but I am trying to send a request to a server through mutual authentication.
I was given
CA pem file
client cert pem file
private key pem file
Right now, I'm trying to ...
RedFlipBull
0
votes
1
answer
765
views
PR_CONNECT_RESET_ERROR upon visiting addons.mozilla.org
Mozilla Firefox 84.0.2, Windows 10
No add-ons/extensions. Also happens on Microsoft Edge.
Output of curl -vvvvv https://addons.mozilla.org/ :
* Trying 44.239.254.46...
* TCP_NODELAY set
* Connected ...
- 1
1
vote
1
answer
6k
views
TLS options for curl/wget
Is it possible to configure curl and/or wget to reject a DH key-exchange of less than or equal to 1024 bits. As a functional test, using curl/wget on https://dh1024.badssl.com/ should fail.
I was ...
3
votes
1
answer
5k
views
Where to get libcurl for Windows with --compressed option enabled?
So, I'm copying some curl commands from developer tools on Firefox and they often include the flag --compressed and even if removing it often makes command execute succesfully, my aim is to be able to ...
- 31
0
votes
1
answer
194
views
Why is mutual auth working on openssl 1.1.0g but not openssl 1.1.1?
I'm making a HTTPS request using mutual authentication. Testing it with curl 7.58.0 using openssl 1.1.0g, it works fine. Upon upgrading to openssl 1.1.1 with the same curl version, the call stops ...
- 9
0
votes
0
answers
98
views
TLS1.2 via SChannel: Server providing certificates instead of issuers
During the TLS1.2 handshake I obtain from the server a list of trusted certificates. I assume, these should be the issuers that the server trusts. OpenSSL calles them Acceptable client certificate CA ...
- 1
1
vote
1
answer
774
views
one way ssl with curl
I know there are many topics and articles out there but I am really spinning my wheels on this one.
I have an NodeJS instance running on TLS. I need another server to connect to it using cURL. ...
- 111
0
votes
0
answers
2k
views
Which versions of tls are supported by ubuntu 10.04?
I have a server running an old version of ubuntu and I need to be able to use tls 1.1/1.2 via curl. It doesn't seem to be currently supported (my version of curl is 7.19.7). Is it possible to get this ...
- 37
0
votes
0
answers
528
views
Understanding Curl command and timing difference
I have a system setup like this -
Internet <--------------> (eno1) Comp A (192.168.151.19)(eth1) <----------> (eth1) Comp B (192.168.151.15)
eno1 and eth1 are bridged.
Comp B access the ...
user647332
2
votes
1
answer
7k
views
Is there a difference between curl --tlsv1 and --tlsv1.0?
The Curl man page lists -1 --tlsv1 and separately lists --tlsv1.0 along with v1.1 and v1.2.
The descriptions are:
-1, --tlsv1
(SSL) Forces curl to use TLS version 1 when negotiating ...
- 123
0
votes
2
answers
3k
views
TLS curl POST resulting in SSLv3 error
I am trying to make a POST request via curl to a server that only supports TLS 1.2, TLS 1.1, and TLS 1.0. However, even when I try to specify the need for TLS instead of the default SSL v. 3 (adding --...
- 213
1
vote
1
answer
5k
views
PHP CURL SSL CA cert (path? access rights?)
Curl through php is constantly complaining about Problem with the SSL CA cert (path? access rights?). This all happend after trying to fix another problem with curl 'SSL connect error' by ...
- 346
1
vote
1
answer
8k
views
curl 'SSL connect error'
basic steps taken:
# echo -n | openssl s_client -showcerts -connect example.com:443 | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > /tmp/example.cert
# curl -v --cacert /tmp/example.cert ...
- 346
7
votes
2
answers
779
views
Firebug and cURL
I have been using Firebug and cURL for quite a while.
Firebug is amazing to capture HTTPS POST request as opposed to a network analyser as it is aware of SSL/TLS negotiation. And cURL is amazing to ...
CurlFirebug
7
votes
2
answers
26k
views
curl and sni-enabled server
I am running curl against a sni-enabled server with the following command
curl --cacert CustomCA.crt -H "Host: example.com" https://1.2.3.4/foo
However, I am not getting the right certificate where ...
- 565
86
votes
4
answers
276k
views
Specifying minor TLS version when using curl
Is there a way to specify curl to use a specific TLS version? Like 1.1 or 1.2? I can see only sslv3 and tlsv1 options in command help. I took latest src and compiled it with openssl 1.0.1e. Still dont ...
- 2,808