Is it possible (or feasible?) to setup CA information using a supplied string rather than a filesystem path?
I'm a little concerned with someone throwing a bogus CA cert in whatever path I use and then being able to substitute their own endpoint that CURLOPT_SSL_VERIFYPEER will believe … I don't know if this is an openssl restriction or not ... ------------------------------------------------------------------- List admin: http://cool.haxx.se/list/listinfo/curl-library Etiquette: http://curl.haxx.se/mail/etiquette.html
