search

letoams / hash-slinger

GNU General Public License v2.0
50 stars 14 forks source link

Repetition of the results #10

Closed bortzmeyer closed 8 years ago

bortzmeyer commented 8 years ago

Why repeating the same line?

% tlsa --verify nohats.ca
SUCCESS (usage 3): The certificate offered by the server matches the TLSA record SUCCESS (usage 3): The certificate offered by the server matches the TLSA record

% tlsa --verify www.bortzmeyer.org
SUCCESS (usage 2): A certificate in the certificate chain (including the end-entity certificate) offered by the server matches the TLSA record SUCCESS (usage 2): A certificate in the certificate chain (including the end-entity certificate) offered by the server matches the TLSA record SUCCESS (usage 2): A certificate in the certificate chain (including the end-entity certificate) offered by the server matches the TLSA record

letoams commented 8 years ago

On Sat, 17 Oct 2015, Stéphane Bortzmeyer wrote:

Why repeating the same line?

% tlsa --verify nohats.ca

SUCCESS (usage 3): The certificate offered by the server matches the TLSA record SUCCESS (usage 3): The certificate offered by the server matches the TLSA record

One for all A/AAAA records. Guess we could show that better :)

Paul

letoams commented 8 years ago

this is fixed in git and will be in 2.7. It will show the IP addresses so you can figure out which of your servers is broken :)