安全协议>> ocsp.sh>> 返回
项目作者: silverwind

项目描述 :
Shell script to retrieve a OCSP responses via curl
高级语言: Shell
项目地址: git://github.com/silverwind/ocsp.sh.git
创建时间: 2017-10-07T08:26:27Z
项目社区:https://github.com/silverwind/ocsp.sh
开源协议:BSD 2-Clause "Simplified" License
下载


ocsp.sh

Shell script to retrieve a OCSP response for a TLS certificate bundle via curl.

The resulting file can for example be used with nginx’s ssl_stapling_file directive. This is useful for retrieving OCSP responses via a proxy server. The response is verified at the end of the script and the output of the verification is printed to stdout.

Usage

  1. Usage: ocsp.sh fullchain.pem ocsp.der [chain.pem]
  3. Retrieve a OCSP response via curl for a TLS certificate bundle.
  5. Parameters
  6.   fullchain.pem     A TLS certificate bundle containing a cert and its signer cert
  7.   ocsp.der          The output file of the ocsp response
  8.   chain.pem         Additional signer certs used during response verification

Example

  1. $ ./ocsp.sh fullchain.pem res.der
  2. Response verify OK
  3. $ ./ocsp.sh fullchain.pem res.der chain.pem
  4. Response verify OK

© silverwind, distributed under BSD licence.