[FFmpeg-devel] [PATCH 1/3] avformat/tls_openssl: add host verification

Nicolas George george at nsup.org
Tue Jul 8 21:21:04 EEST 2025 

Marvin Scholz (HE12025-07-08):
> Can you clarify?

wget(1):

       --no-check-certificate
           Don't check the server certificate against the available certificate
           authorities.  Also don't require the URL  host  name  to  match  the
           common name presented by the certificate.

curl(1):
       -k, --insecure
              (TLS SFTP SCP) By default, every secure connection curl makes  is
              verified  to  be secure before the transfer takes place. This op‐
              tion makes curl skip the verification step  and  proceed  without
              checking.

w3m/README:
   ssl_verify_server ON/OFF
       Verify the SSL server (default: ON)

And so on.

Should probably be off by default for now, too.

Regards,

-- 
  Nicolas George

More information about the ffmpeg-devel mailing list