How do I set GIT_SSL_NO_VERIFY for specific repos only?

Question

I have to use a git server without proper certificates, but I don\'t want to have to do

env GIT_SSL_NO_VERIFY=true git command

every single

Answer 1

There is an easy way of configuring GIT to handle your server the right way. Just add an specific http section for your git server and specify which certificate (Base64 encoded) to trust:

~/.gitconfig

[http "https://repo.your-server.com"]
# windows path use double back slashes
#  sslCaInfo = C:\\Users\\\\repo.your-server.com.cer
# unix path to certificate (Base64 encoded)
sslCaInfo = /home//repo.your-server.com.cer

This way you will have no more SSL errors and validate the (usually) self-signed certificate. This is the best way to go, as it protects you from man-in-the-middle attacks. When you just disable ssl verification you are vulnerable to these kind of attacks.

https://git-scm.com/docs/git-config#git-config-httplturlgt