Not aware of dual ECDSA + RSA certificates

genkiroid / cert

Cert is the Go tool to get TLS certificate information.

MIT License

245 stars 37 forks source link

Not aware of dual ECDSA + RSA certificates #13

Closed alexzeitgeist closed 5 years ago

alexzeitgeist commented 5 years ago

Certain servers (like Nginx) can be configured to serve both ECDSA and RSA certificates simultaneously.

Currently, there is no way in cert to control which certificate to test for, and also there is no indication which certificates is actually being tested.

genkiroid commented 5 years ago

Thanks for your report. I'll check the solution.

genkiroid commented 5 years ago

@alexzeitgeist

The -cipher(-c) option was implemented. It can specify cipher suite what will used in client hello.(For a list of cipher suites that can be specified, see here.) As a result, multiple certificates can be confirmed individually.

See the README for examples.

Thank you.