| xf.li | 6c8fc1e | 2023-08-12 00:11:09 -0700 | [diff] [blame] | 1 | c: Copyright (C) 1998 - 2022, Daniel Stenberg, <daniel@haxx.se>, et al. |
| 2 | SPDX-License-Identifier: curl |
| 3 | Long: insecure |
| 4 | Short: k |
| 5 | Help: Allow insecure server connections |
| 6 | Protocols: TLS SFTP SCP |
| 7 | See-also: proxy-insecure cacert capath |
| 8 | Category: tls sftp scp |
| 9 | Example: --insecure $URL |
| 10 | Added: 7.10 |
| 11 | Multi: boolean |
| 12 | --- |
| 13 | By default, every secure connection curl makes is verified to be secure before |
| 14 | the transfer takes place. This option makes curl skip the verification step |
| 15 | and proceed without checking. |
| 16 | |
| 17 | When this option is not used for protocols using TLS, curl verifies the |
| 18 | server's TLS certificate before it continues: that the certificate contains |
| 19 | the right name which matches the host name used in the URL and that the |
| 20 | certificate has been signed by a CA certificate present in the cert store. |
| 21 | See this online resource for further details: |
| 22 | https://curl.se/docs/sslcerts.html |
| 23 | |
| 24 | For SFTP and SCP, this option makes curl skip the *known_hosts* verification. |
| 25 | *known_hosts* is a file normally stored in the user's home directory in the |
| 26 | ".ssh" subdirectory, which contains host names and their public keys. |
| 27 | |
| 28 | **WARNING**: using this option makes the transfer insecure. |