Changes between Version 25 and Version 26 of SecurityInfo


Ignore:
Timestamp:
01/23/15 11:58:25 (22 months ago)
Author:
chris
Comment:

Updated for SHA256, see ticket:795

Legend:

Unmodified
Added
Removed
Modified

  • SecurityInfo

    v25 v26  
    99* https://patterns.transitionresearchnetwork.org/  
    1010  {{{SHA1 Fingerprint=63:8A:D9:03:1F:FB:5D:40:CF:2D:CF:8A:4C:C4:C4:78:F0:F2:10:2E}}} 
    11 * https://tech.transitionnetwork.org/ 
    12   {{{SHA1 Fingerprint=DE:E6:11:E6:81:E5:ED:2E:FB:ED:54:39:22:9A:A6:1D:C4:5B:FB:C3}}} 
     11* https://*.transitionnetwork.org/ 
     12  {{{ 
     13  SHA1 Fingerprint=67:E3:06:44:B5:95:67:74:1A:7A:EC:E2:82:C5:FC:27:A7:01:9C:F7 
     14  SHA256 Fingerprint=19:BF:1D:C7:34:FB:12:D1:AB:69:6E:96:1A:E3:94:C0:B8:C0:F6:85:03:D2:8A:E9:57:42:61:B3:F2:95:39:28 
     15  }}} 
    1316* https://www.transitionnetwork.org/ 
    14   {{{SHA1 Fingerprint=DE:E6:11:E6:81:E5:ED:2E:FB:ED:54:39:22:9A:A6:1D:C4:5B:FB:C3}}} 
    1517 
    1618== Getting a new certificate == 
     
    2931 * [https://www.ssllabs.com/ssltest/analyze.html?d=parrot.transitionnetwork.org parrot] 
    3032 
    31 See also: 
     33See also (newest items at the end): 
    3234 
    3335- ticket:409 on which some issues were resolved. 
     
    4547{{{ 
    4648openssl s_client -connect transitionnetwork.org:443 < /dev/null 2>/dev/null | openssl x509 -fingerprint -noout -in /dev/stdin 
    47 SHA1 Fingerprint=44:15:8B:F2:0C:D3:E6:92:9A:41:6E:FC:2A:46:36:89:90:B1:16:70 
     49SHA1 Fingerprint=67:E3:06:44:B5:95:67:74:1A:7A:EC:E2:82:C5:FC:27:A7:01:9C:F7 
    4850}}} 
    4951 
     
    5355cd /etc/ssl/transitionnetwork.org 
    5456openssl x509 -noout -in transitionnetwork.org.crt -fingerprint 
    55 SHA1 Fingerprint=44:15:8B:F2:0C:D3:E6:92:9A:41:6E:FC:2A:46:36:89:90:B1:16:70 
     57SHA1 Fingerprint=67:E3:06:44:B5:95:67:74:1A:7A:EC:E2:82:C5:FC:27:A7:01:9C:F7 
     58openssl x509 -noout -in transitionnetwork.org.crt -fingerprint -sha256 
     59SHA256 Fingerprint=19:BF:1D:C7:34:FB:12:D1:AB:69:6E:96:1A:E3:94:C0:B8:C0:F6:85:03:D2:8A:E9:57:42:61:B3:F2:95:39:28 
    5660}}} 
    5761 
     
    8589Copy from the {{{-----BEGIN CERTIFICATE-----}}} to the {{{-----END CERTIFICATE-----}}} which starts with {{{ 0 s:/OU=Domain Control Validated/OU=Gandi Standard Wildcard SSL/CN=*.transitionnetwork.org}}}, and save it in your {{{~/.cert/www.transitionnetwork.org/}}} directory as {{{www.transitionnetwork.org.pem}}}. 
    8690 
    87 This certificate was issued by Gandi, so you need to get the various certificates [http://wiki.gandi.net/en/ssl/intermediate?rev=1236084787 from gandi.net] and change them into pem format: 
     91This certificate was issued by Gandi, so you need to get the various certificates [http://wiki.gandi.net/en/ssl/intermediate?rev=1236084787 from gandi.net] and change them into pem format ('''note this needs updating for SHA256 certs''') 
    8892  
    8993{{{