Detect CURLOPT_SSL_VERIFYPEER programatically?

From a stackoverflow response:

CURLOPT_SSL_VERIFYPEER checks that the remote certificate is valid, i.e. that you trust that it was issued by a CA you trust and that it’s genuine.

CURLOPT_SSL_VERIFYHOST checks that the cert was issued to the entity you wanted to talk to.

To compare it to a real-life scenario, VERIFYPEER is like checking that the form of ID is one that you recognise (i.e. passport from a country you trust, staff card from a company you know, …). VERIFYHOST is like checking the actual name on the card matches who you wanted to talk to.

If you don’t use VERIFYHOST (the correct value is 2, not 1, btw), you disable host name verification and open the door to MITM attacks: anyone with a form of ID you trust can impersonate anyone within the set of IDs you trust, e.g. anyone with a valid passport could pretend they’re anyone else with a valid passport.

https://stackoverflow.com/questions/13740933/security-consequences-of-disabling-curlopt-ssl-verifyhost-libcurl-openssl

But my question still remains, why are some users having to set it to false? And clearly, from this response, it’s a security risk, so they shouldn’t need to do so.

Related Posts:

  1. How can I use an .htaccess file in Nginx?
  2. .htaccess redirect http to https
  3. 404 Not Found The requested URL was not found on this server
  4. What is the difference between Local Server and a Web Server?
  5. How to run php files on my computer
  6. Whats the point of running Laravel with the command ‘php artisan serve’?
  7. Localhost is not working
  8. PHP $_SERVER[‘HTTP_HOST’] vs. $_SERVER[‘SERVER_NAME’], am I understanding the man pages correctly?
  9. SVN Error E175002 while checking out code from repository
  10. XAMPP, Apache – Error: Apache shutdown unexpectedly
  11. htaccess – Redirect to subfolder without changing browser URL
  12. Enable PHP Apache2
  13. client denied by server configuration
  14. What is HTTPD exactly?
  15. XAMPP: Connecting to localhost fix? [Persistent]
  16. Request exceeded the limit of 10 internal redirects due to probable configuration error
  17. How do you redirect HTTPS to HTTP?
  18. Adding a user on .htpasswd
  19. a2enmod command not found in apache server using cpanel in linux vps
  20. How do I disable directory browsing?
  21. Apache and Node.js on the Same Server
  22. Apache is downloading php files instead of displaying them
  23. lbmethod_heartbeat:notice – No slotmem from mod_heartmonitor –error after installing apache2.4.2 [closed]
  24. Difference between Systemctl and service command
  25. “End of script output before headers” error in Apache
  26. XAMPP installation on Win 8.1 with UAC Warning
  27. org.apache.jasper.JasperException
  28. Https to http redirect using htaccess
  29. Site does not exist error for a2ensite
  30. WAMP won’t turn green. And the VCRUNTIME140.dll error
  31. .htaccess: Invalid command ‘RewriteEngine’, perhaps misspelled or defined by a module not included in the server configuration
  32. PHP code is not being executed, but the code shows in the browser source code
  33. How do I get the right permissions for WordPress running Apache on Debian
  34. How can I improve site/page performance of WordPress websites?
  35. Best practices for making a WordPress site “movable”?
  36. WordPress V2 REST-API: Endpoints 404?
  37. How to configure self hosted wordpress so that everything can be upgraded/installed from dashboard
  38. Installing WordPress in a Sub-Folder (not in root) on Localhost
  39. WordPress multisite causing Error 101 (net::ERR_CONNECTION_RESET): Unknown error [duplicate]
  40. What’s the proper way to setup WP-CLI on Ubuntu so that I don’t have to use the flag –allow-root?
  41. Which Apache-modules must I enable?
  42. What are some good Apache settings to use with wordpress?
  43. Point root folder to blog.domain.com and subdirectory to domain.com possible?
  44. Internal Server Error apache
  45. What to do when WordPress posts on a new server return an error 404
  46. Accidentally messed up URLs
  47. Show wordpress locally in xammp and in iPhone via ip
  48. WordPress docker with empty responses to HTTP requests
  49. White Screen of Death for unknown reason but fixes after rebooting the server
  50. Forbidden You don’t have permission to access this resource. Apache/2.4.41 (Ubuntu) Server [closed]
  51. WordPress page not accessible through WAN [closed]
  52. Caching plugins + mod_pagespeed = overkill?
  53. Virtual HostX and MAMP not working with WordPress
  54. I Made WordPress Multisite. And Now Everything Doesn’t Display Properly
  55. If I use Apache & ngnix together will I have fewer problems?
  56. how to config the home page locally
  57. WordPress: redirecting to my old public ip
  58. New wordpress keep redirecting to localhost/wp-admin/install.php
  59. How to point domain to wordpress page
  60. CURL error with REST API
  61. Is a local multisite installation equivalent to multiple VirtualHosts?
  62. How to rename a wordpress site from http://myserver.example.com/blog to http://myserver.example.com/somethingelse or just http://myserver.example.com
  63. WordPress in AWS Lightsail – restrict public IP
  64. How to make wordpress page site.com/content as location for main site.com that is worked on nuxt.js+node?
  65. Removed index.php now all pages with Internal Server Error
  66. WordPress V2 REST-API: Endpoints 404?
  67. Move site root directory on debian
  68. Wp-admin uses different php.ini than the theme files
  69. How to change wordpress port number to 8000?
  70. Timthumb isn’t displaying any images. “A TimThumb error has occured
  71. I got ERR_TOO_MANY_REDIRECTS on subdomain
  72. Error 500 ONLY in dashboard main page. How to fix it?
  73. Localhost WordPress Uploading of Images Issue
  74. Apache and Networks
  75. WordPress MAMP Installation Issue
  76. All scripts and style links return 404 on a local virtualhost
  77. Configure VirtualHost for a perfect WordPress Environment
  78. I’m think I’ve found a bug with JetPack 1.7 [closed]
  79. Issues when moving from server to MAMP
  80. CHMOD 0777, but WordPress still not able to write files/folders [closed]
  81. oEmbed work on localhost but not on distant server
  82. Permalinks to Post name not working
  83. WordPress – Unable to Create New Account – Windows/Apache/MySQL
  84. Serve static files via a subdomain on a wordpress
  85. Connection reset by peer: mod_fcgid: error reading data from FastCGI server
  86. java.lang.RuntimeException: Unable to instantiate org.apache.hadoop.hive.ql.metadata.SessionHiveMetaStoreClient
  87. Apache server keeps crashing, “caught SIGTERM, shutting down”
  88. Where can I download the jar for org.apache.http package?
  89. Apache/Linux configuration changes to make automatic upgrade more straightforward
  90. How can I find the cause of theme crashing Apache in Xampplite?
  91. What’s the opposite of required valid user in .htaccess authentication
  92. How to configure Multisite Network with randomized hostnames?
  93. WordPress: get recent posts, delete the current category
  94. PHP Warning: chmod(): Operation not permitted in class-wp-filesystem-direct.php on line 173
  95. Recommendation for server config for WordPress Staging servers [closed]
  96. issue with wordpress [wp-admin] redirects, when using kubernetes ingress hosting two wordpress websites using path
  97. Admin-area broken through weird issues
  98. Can’t get pretty permalinks to work without index.php
  99. Problems loading stylesheet and permalinks after rebooting
  100. WP-Include rewrite directory