moparisthebest/curl
1
0
Fork 0
mirror of https://github.com/moparisthebest/curl synced 2025-02-28 09:21:50 -05:00
Code Issues Releases Wiki Activity

SSLCERTS: improve the openssl command line

Browse Source 
... for extracting certs from a live HTTPS server to make a cacerts.pem
from them.
This commit is contained in:
Daniel Stenberg 2018-08-20 14:05:28 +02:00
parent a040ff88e4
commit 9dad3bd665
No known key found for this signature in database
GPG Key ID: 5CC908FDB71E12C2
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
docs/SSLCERTS.md
View File

@ -92,8 +92,8 @@ server, do one of the following:
If you use the 'openssl' tool, this is one way to get extract the CA cert If you use the 'openssl' tool, this is one way to get extract the CA cert
for a particular server: for a particular server:
- `openssl s_client -connect xxxxx.com:443 |tee logfile` - `openssl s_client -showcerts -servername server -connect server:443 > cacert.pem`
- type "QUIT", followed by the "ENTER" key - type "quit", followed by the "ENTER" key
- The certificate will have "BEGIN CERTIFICATE" and "END CERTIFICATE" - The certificate will have "BEGIN CERTIFICATE" and "END CERTIFICATE"
markers. markers.
- If you want to see the data in the certificate, you can do: "openssl - If you want to see the data in the certificate, you can do: "openssl