search

von / PerProxy

A python-based proxy that uses Perspectives to detect and thwart SSL MITM attacks.
7 stars 2 forks source link

Add support for using Google Certificate Catalog as a notary #1

Open von opened 13 years ago

von commented 13 years ago

Add support for using Google Certificate Catalog as a notary: http://googleonlinesecurity.blogspot.com/2011/04/improving-ssl-certificate-security.html

Fairly straight forward with http://www.dnspython.org:

a = dns.resolver.query("405062e5befde4af97e9382af16cc87c8fb7c4e2.certs.googlednstest.com", "TXT")
for rdata in a:
    print rdata
"14867 15065 75"
von commented 13 years ago

Wrote a simple client whose code could be re-used: https://github.com/von/google-cert-checker