Chris's Wiki :: blog/sysadmin/InspectingTLSWithCertigo Commentshttps://utcc.utoronto.ca/~cks/space/blog/sysadmin/InspectingTLSWithCertigo?atomcommentsDWiki2019-05-18T12:02:24ZRecent comments in Chris's Wiki :: blog/sysadmin/InspectingTLSWithCertigo.By Tony Finch on /blog/sysadmin/InspectingTLSWithCertigotag:CSpace:blog/sysadmin/InspectingTLSWithCertigo:8111e00487e2d17e78e79b54ab4dec4af3d62a92Tony Finchhttps://dotat.at/<div class="wikitext"><p>I'm surprised by your comment about OpenSSL using SHA-1, even though the back-linked article is a couple of years old. I've tried openssl-1.0.1 which is even older and it uses SHA-256...</p>
</div>2019-05-18T12:02:24ZFrom 78.58.206.110 on /blog/sysadmin/InspectingTLSWithCertigotag:CSpace:blog/sysadmin/InspectingTLSWithCertigo:5e85e05a6fe2bd59eafe813a6b9a49d23974fa26From 78.58.206.110<div class="wikitext"><p>Hmm, I've mostly used GnuTLS <code>certtool -i</code> and <code>gnutls-cli</code> for this purpose. The latter has <code>--ocsp</code>, though only manual STARTTLS. It is useful to have several different TLS clients available...</p>
</div>2019-05-18T11:04:01Z