Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2024-12-28 12:29:44 +01:00
Code Issues Packages Projects Releases Wiki Activity

need to update hashes needs to be earlier

Browse Source
This commit is contained in:
Dirk 2024-07-23 11:35:16 +02:00
parent 778aab0241
commit 69c1a2fcb8
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
etc/README.md
View File

@ -22,6 +22,8 @@ Google Chromium uses basically the trust stores above, see https://www.chromium.
If you want to check trust against e.g. a company internal CA you need to use ``./testssl.sh --add-ca companyCA1.pem,companyCA2.pem <further_cmds>`` or ``ADDTL_CA_FILES=companyCA1.pem,companyCA2.pem ./testssl.sh <further_cmds>``.
IMPORTANT: After updating any of the CA root stores you have to invoke ``./utils/create_ca_hashes.sh`` to update ``~/etc/ca_hashes.txt``.
#### License
@ -37,7 +39,7 @@ Please note that the licenses of the certificate stores might not be GPLv2 in al
* ``curves-mapping.txt`` contains information about all of the elliptic curves defined by IANA
* ``ca_hashes.txt`` is used for HPKP test in order to have a fast comparison with known CAs. You MUST
use ``~/utils/create_ca_hashes.sh`` for every update
use ``./utils/create_ca_hashes.sh`` for every Root CA store update, see above.
* ``common-primes.txt`` is used for LOGJAM and the PFS section