search

chromium / badssl.com

:lock: Memorable site for testing clients against bad SSL configs.
https://badssl.com
Apache License 2.0
2.83k stars 191 forks source link

Same invalid certificate on multiple hosts #474

Open nihaals opened 3 years ago

nihaals commented 3 years ago

It would be useful to be able to test the same invalid certificate on multiple hosts to see if the browser will trust (when using the temporarily trust button on the warning page) the certificate or the combination of the certificate and the host.

For example, to test if you trust a certificate on sub1.badssl.com then go to sub2.badssl.com (which has the same certificate as sub1.badssl.com), will it show the warning again. This might need multiple pages, one for both hosts being part of the certificate and another where 1 or 0 of the hosts are part of the certificate (this could probably use the same certificate and just more than 2 hosts).

Krshivam25 commented 3 years ago

I want to work on this issue. Please guide me on how to get started?