Feat(bkmk_rcurl): Lower SSL security settings

author Oleg Broytman <phd@phdru.name>

Tue, 20 Aug 2024 22:30:28 +0000 (01:30 +0300)

committer Oleg Broytman <phd@phdru.name>

Sat, 7 Sep 2024 10:59:02 +0000 (13:59 +0300)
author Oleg Broytman <phd@phdru.name>
Tue, 20 Aug 2024 22:30:28 +0000 (01:30 +0300)
committer Oleg Broytman <phd@phdru.name>
Sat, 7 Sep 2024 10:59:02 +0000 (13:59 +0300)
diff --git a/Robots/bkmk_rcurl.py b/Robots/bkmk_rcurl.py

index d59f4b4cbb3b9cf7c83400468ea4d80ff8aa4bb1..a144805893dbda4816f6ef17afdcfc4b5f808018 100644 (file)
--- a/Robots/bkmk_rcurl.py
+++ b/Robots/bkmk_rcurl.py
@@ -32,8 +32,10 @@ class robot_curl(robot_base):
  
          # Do not follow redirects
          curl.setopt(pycurl.FOLLOWLOCATION, 0)
-        # Verify that we've got the right site; harmless on a non-SSL connect.
-        curl.setopt(pycurl.SSL_VERIFYHOST, 2)
+        # Lower security settings - we need to get as musch as possible
+        curl.setopt(pycurl.SSL_CIPHER_LIST, 'ALL:@SECLEVEL=1')
+        curl.setopt(pycurl.SSL_VERIFYHOST, 0)
+        curl.setopt(pycurl.SSL_VERIFYPEER, 0)
          curl.setopt(curl.CAINFO, certifi.where())
          # Set timeouts to avoid hanging too long
          if url.startswith('ftp://'):
author	Oleg Broytman <phd@phdru.name>
	Tue, 20 Aug 2024 22:30:28 +0000 (01:30 +0300)
committer	Oleg Broytman <phd@phdru.name>
	Sat, 7 Sep 2024 10:59:02 +0000 (13:59 +0300)