On 07/07/2012 12:50 PM, Ángel González wrote: > On 06/07/12 01:01, [email protected] wrote: >> Because SSL CA's have failed many times (Comodo, DigiNotar, ...) I wish to >> have an option to pin a SSL certificate. The fingerprint may be optionally >> provided through a new option. > Have you tried using --ca-certificate option?
I believe the OP wants to pin the certificate of the remote server (that
is, the end entity certificate), whereas --ca-certificate pins the
certificate of the issuing authority.
--dkg
signature.asc
Description: OpenPGP digital signature
