问题描述
C:\Users\casta>curl https://c5.ppy.sh
curl: (35) schannel: next InitializeSecurityContext failed: Unknown error (0x80092012) - The revocation function was unable to check revocation for the certificate.
我创建了自己的 CA,并从该 CA 获取了证书.
I've made my own CA, and I made a certificate from this CA.
问题是,当我尝试使用此证书访问网站时,它工作正常!
The problem is, when I tried to access website with this certificate, It works fine!
但是如果我尝试使用 curl 或 C# 应用程序,它会返回错误.
but If I tried with curl or C# applications, It returns error.
C# 错误在这里:
2019-02-28T09:20:33: System.Net.WebException: The request was aborted: Could not create SSL/TLS secure channel
2019-02-28T09:20:33: 위치: #=zGFbxUFU_LnBci6wJmmCy1$E=.#=z0YcFrd6MZP1A()
2019-02-28T09:20:33: 위치: #=zuFHGCPNOLQmjQEcRmqQHLnQ=.#=z3NGNjJ0=()
推荐答案
我一直在通过 mitm 代理使用 curl 进行渗透测试并遇到同样的问题.
I've been using curl through a mitm proxy for pen-testing and getting the same issue.
我终于发现 curl 需要一个参数告诉它不要检查证书吊销,所以命令看起来像这样:
I finally figured that curl needs a parameter telling it not to check certificate revocation, so the command looks something like this:
curl "https://www.example.com" --ssl-no-revoke -x 127.0.0.1:8081
-x
参数传递代理详细信息 - 您可能不需要这个.
The -x
parameter passes the proxy details - you may not need this.
第
这篇关于curl:未知错误 (0x80092012) - 吊销功能无法检查证书吊销的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!