LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page [SOLVED] Checking self signed cert on apache
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 05-02-2015, 01:52 PM   #1
mattydee
Member
 
Registered: Dec 2006
Location: Vancouver, BC
Distribution: Debian,Ubuntu,Slackware
Posts: 479

Rep: Reputation: 48
Checking self signed cert on apache

So in my sites-available/default-ssl.conf file I have the follwing entries:
Code:
SSLCertificateFile  /etc/ssl/certs/ssl-cert-snakeoil.pem
SSLCertificateKeyFile /etc/ssl/private/ssl-cert-snakeoil.key
When browsing to my site using ssl/tls, I expect to get a warning, which I do. I can access the details of the certificate in the browser certificate warning window. My question is: how can I check this against the certificate on the server? I thought a simple md5sum or sha1sum would be possible, but I can't seem to get a match with the information the browser warning is giving me.

I have full access to my server, so the information should be there. I thought that /etc/ssl/certs/ssl-cert-snakeoil.pem would be the public key/server certificate. Therefore I should be able to check this against the browser warning/info. How?

Thanks
 
Old 05-02-2015, 05:53 PM   #2
mattydee
Member
 
Registered: Dec 2006
Location: Vancouver, BC
Distribution: Debian,Ubuntu,Slackware
Posts: 479

Original Poster
Rep: Reputation: 48
Figured it out:
Code:
openssl x509 -noout -in /etc/ssl/certs/ssl-cert-snakeoil.pem -fingerprint -sha1
This will output the sha1 fingerprint, which I can verify with the browser warning I get.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] Ubuntu OpenLDAP self-signed cert woes hippie131 Linux - Server 2 06-11-2014 03:24 AM
getting mailx to use other machine's postfix server, not trusting my self-signed cert psycroptic Linux - Software 0 06-21-2013 01:44 AM
how to create signed (not self signed) certificate for Apache ? dlugasx Linux - Server 4 12-16-2011 10:08 AM
[SOLVED] postfix rejecting self-signed cert on remote smtp server? sneakyimp Linux - Server 10 06-27-2011 03:00 PM
How to add SANs to a self signed SSL cert pirhana Linux - Security 1 11-08-2008 08:27 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 03:25 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration