本机环境
Windows 7
方法/步骤
1、进入网站
https://curl.haxx.se/download/?C=M;O=D网站
2、根据自己的操作系统位数和是否需要SSL下载相应的版本。
这里下载curl-7.33.0-win64-ssl-sspi.zip,下载完成之后解压到需要使用curl命令的目录。这里为了方便我先直接解压到当前目录。
3、在本窗口下打开运行该命令
【没有建立系统环境变量,所以只能在本目录下运行】,检测是否可以正常运行
注意:
想得到上面的“在此处打开命令窗口(W)”,请使用键盘 Shift+鼠标右键 即可
C:\common_command>curl -v -X OPTIONS https://www.baidu.com/ *Adding handle: conn: 0x205e100 *Adding handle: send: 0 *Adding handle: recv: 0 *Curl_addHandleToPipeline: length: 1 * -Conn 0 (0x205e100) send_pipe: 1, recv_pipe: 0 *About to connect() to www.baidu.com port 443 (#0) * Trying 220.181.112.244... * Connectedto www.baidu.com (220.181.112.244) port 443 (#0) *SSLv3, TLS handshake, Client hello (1): *SSLv3, TLS handshake, Server hello (2): *SSLv3, TLS handshake, CERT (11): *SSLv3, TLS alert, Server hello (2): * SSLcertificate problem: unable to get local issuer certificate *Closing connection 0 curl:(60) SSL certificate problem: unable to get local issuer certificate Moredetails here: http://curl.haxx.se/docs/sslcerts.html curlperforms SSL certificate verification by default, using a "bundle" of Certificate Authority (CA) public keys (CAcerts). If the default bundle file isn't adequate, you can specify analternate file using the --cacert option. Ifthis HTTPS server uses a certificate signed by a CA represented in the bundle, the certificate verificationprobably failed due to a problem with the certificate (it might beexpired, or the name might not match the domain name in the URL). Ifyou'd like to turn off curl's verification of the certificate, use the -k (or --insecure) option. C:\common_command>
4、加入系统环境变量
用户变量和系统变量的区别:
答: 用户变量:指在该用户登录后该环境变量有效。
系统变量:指任何用户登录该系统,该环境变量都有效。
怎么使用:判断该环境变量是否敏感或者是否有用户限制,如果没有则配置在系统变量;否则请根据敏感度或者限制情况配置在用户的环境变量,有利于安全。
5、在其他路径下测试是否可以使用CURL命令
成功!
6、该命令常用作用
答:
1、用于查看该网站可以允许有哪些http请求 【常用:GET, HEAD, POST,PUT, DELETE, OPTIONS】
我们经常不希望有PUT和DELETE请求,如果有则需要关闭;因为容易造成一些安全问题。
[zhang@zhang ~]$ curl -v -X OPTIONS https://www.aliyun.com/ *About to connect() to www.aliyun.com port 443 (#0) * Trying 42.156.220.114... connected *Connected to www.aliyun.com (42.156.220.114) port 443 (#0) *Initializing NSS with certpath: sql:/etc/pki/nssdb * CAfile: /etc/pki/tls/certs/ca-bundle.crt CApath: none * SSLconnection using TLS_RSA_WITH_AES_128_CBC_SHA *Server certificate: * subject: CN=*.aliyun.com,O="Alibaba(China) Technology Co., Ltd.",L=HangZhou,ST=ZheJiang,C=CN * start date: 12月 14 10:47:07 2015 GMT * expire date: 12月 14 10:39:17 2016 GMT * common name: *.aliyun.com * issuer: CN=GlobalSign OrganizationValidation CA - G2,O=GlobalSign nv-sa,C=BE >OPTIONS / HTTP/1.1 >User-Agent: curl/7.19.7 (x86_64-redhat-linux-gnu) libcurl/7.19.7 NSS/3.19.1Basic ECC zlib/1.2.3 libidn/1.18 libssh2/1.4.2 >Host: www.aliyun.com >Accept: */* > <HTTP/1.1 200 OK <Date: Thu, 14 Apr 2016 05:16:27 GMT <Content-Type: text/html; charset=utf-8 <Transfer-Encoding: chunked <Connection: close <Vary: Accept-Encoding <Server: Tengine <Vary: Accept-Encoding <Vary: Accept-Encoding < Allow: GET <Strict-Transport-Security: max-age=31536000 <Timing-Allow-Origin: * < *Closing connection #0
另请参考:Windows下安装使用curl命令