[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] verify ssl cert command line

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] verify ssl cert command line
From: Dave King <davefd@xxxxxxxxxxxxx>
Date: Thu, 30 Jun 2005 01:32:18 -0600

Sorry about the messed up subject. I realized it right after I sent it. Anyways, thanks for the advice and I think I can use openssl s_client to do what I need, I had considered openssl verify but I'm going to have to check a bunch of certs and didn't want to have to deal with downloading and storing certs tempararily to check them if possible.

Thanks,
Dave

Harry Hoffman wrote:

openssl s_client -connect host:port
will tell you if the cert is not valid
Dave wrote:
Hi All- I need a command line tool that will verify that an SSL cert is valid, much like the check a browser performs. I'm pretty sure I could hack one using the SSLeay perl module, but if one's already available, I'd rather use that. If nobody knows of one, but has some tips on how to use SSLeay or some other library to check certs then I'd appreciate any advice.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Advisory 02/2005: Remote code execution in Serendipity
  - From: Christopher Kunz
- Re: [Full-disclosure] Advisory 02/2005: Remote code execution in Serendipity
  - From: Dave King

Prev by Date: Re: [Full-disclosure] Advisory 02/2005: Remote code execution in Serendipity
Next by Date: [Full-disclosure] [SECURITY] [DSA 733-1] New crip packages fix insecure temporary files
Previous by thread: Re: [Full-disclosure] Advisory 02/2005: Remote code execution in Serendipity
Next by thread: [Full-disclosure] Jack Szeszycki
Index(es):
- Date
- Thread