curl - Is data encrypted when using the --insecure option?

Question

I have a situation where the client makes a call through curl to a https url. The SSL certificate of the https url is self signed and therefore curl cannot do certificate va

Answer 1

Yes, the transfered data is still sent encrypted. -k/--insecure will "only make" curl skip certificate validation, it will not turn off SSL all together.

More information regarding the matter is available under the following link:

• curl.haxx.se - Details on Server SSL Certificates