Home / server / Questions / 469824
Accepted
blueFast
Asked: 2013-01-17 15:09:58 +0800 CST

Curl: disable certificate verification

  • 772

I am developing and I need to access https://localhost. I know the certificate will not match. I just want curl to ignore that. Currently it gives me the following error message:

curl: (51) SSL peer certificate or SSH remote key was not OK

Is it possible to tell curl to perform the access anyway?

linux

3 Answers

  1. Best Answer

    Yeah, you can do that. From curl --help or man curl:

    -k, --insecure

    (SSL) This option explicitly allows curl to perform "insecure" SSL connections and transfers. All SSL connections are attempted to be made secure by using the CA certificate bundle installed by default. This makes all connections considered "insecure" fail unless -k, --insecure is used.

    See this online resource for further details: http://curl.haxx.se/docs/sslcerts.html

    • 102

  2. curl -k or curl --insecure does NOT fix this particular error condition:

    curl: (51) SSL peer certificate
    • 20

  3. If you truly want to disable curl SSL verification, by default, for ALL use cases, you can do as suggested in this Unix stack exchange answer:

    $ echo insecure >> ~/.curlrc

    Now should you do this? No, as this is avoiding security checks you should have in place... but if you really really want to do this, caveat emptor!

    • 5