00001 /*************************************************************************** 00002 * _ _ ____ _ 00003 * Project ___| | | | _ \| | 00004 * / __| | | | |_) | | 00005 * | (__| |_| | _ <| |___ 00006 * \___|\___/|_| \_\_____| 00007 * 00008 * Copyright (C) 1998 - 2016, Daniel Stenberg, <daniel@haxx.se>, et al. 00009 * 00010 * This software is licensed as described in the file COPYING, which 00011 * you should have received as part of this distribution. The terms 00012 * are also available at https://curl.haxx.se/docs/copyright.html. 00013 * 00014 * You may opt to use, copy, modify, merge, publish, distribute and/or sell 00015 * copies of the Software, and permit persons to whom the Software is 00016 * furnished to do so, under the terms of the COPYING file. 00017 * 00018 * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY 00019 * KIND, either express or implied. 00020 * 00021 ***************************************************************************/ 00022 00023 /* <DESC> 00024 * POP3 example using TLS 00025 * </DESC> 00026 */ 00027 00028 #include <stdio.h> 00029 #include <curl/curl.h> 00030 00031 /* This is a simple example showing how to retrieve mail using libcurl's POP3 00032 * capabilities. It builds on the pop3-retr.c example adding transport 00033 * security to protect the authentication details from being snooped. 00034 * 00035 * Note that this example requires libcurl 7.20.0 or above. 00036 */ 00037 00038 int main(void) 00039 { 00040 CURL *curl; 00041 CURLcode res = CURLE_OK; 00042 00043 curl = curl_easy_init(); 00044 if(curl) { 00045 /* Set username and password */ 00046 curl_easy_setopt(curl, CURLOPT_USERNAME, "user"); 00047 curl_easy_setopt(curl, CURLOPT_PASSWORD, "secret"); 00048 00049 /* This will retrieve message 1 from the user's mailbox */ 00050 curl_easy_setopt(curl, CURLOPT_URL, "pop3://pop.example.com/1"); 00051 00052 /* In this example, we'll start with a plain text connection, and upgrade 00053 * to Transport Layer Security (TLS) using the STLS command. Be careful of 00054 * using CURLUSESSL_TRY here, because if TLS upgrade fails, the transfer 00055 * will continue anyway - see the security discussion in the libcurl 00056 * tutorial for more details. */ 00057 curl_easy_setopt(curl, CURLOPT_USE_SSL, (long)CURLUSESSL_ALL); 00058 00059 /* If your server doesn't have a valid certificate, then you can disable 00060 * part of the Transport Layer Security protection by setting the 00061 * CURLOPT_SSL_VERIFYPEER and CURLOPT_SSL_VERIFYHOST options to 0 (false). 00062 * curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, 0L); 00063 * curl_easy_setopt(curl, CURLOPT_SSL_VERIFYHOST, 0L); 00064 * 00065 * That is, in general, a bad idea. It is still better than sending your 00066 * authentication details in plain text though. Instead, you should get 00067 * the issuer certificate (or the host certificate if the certificate is 00068 * self-signed) and add it to the set of certificates that are known to 00069 * libcurl using CURLOPT_CAINFO and/or CURLOPT_CAPATH. See docs/SSLCERTS 00070 * for more information. */ 00071 curl_easy_setopt(curl, CURLOPT_CAINFO, "/path/to/certificate.pem"); 00072 00073 /* Since the traffic will be encrypted, it is very useful to turn on debug 00074 * information within libcurl to see what is happening during the 00075 * transfer */ 00076 curl_easy_setopt(curl, CURLOPT_VERBOSE, 1L); 00077 00078 /* Perform the retr */ 00079 res = curl_easy_perform(curl); 00080 00081 /* Check for errors */ 00082 if(res != CURLE_OK) 00083 fprintf(stderr, "curl_easy_perform() failed: %s\n", 00084 curl_easy_strerror(res)); 00085 00086 /* Always cleanup */ 00087 curl_easy_cleanup(curl); 00088 } 00089 00090 return (int)res; 00091 }