Skip to content
main
Switch branches/tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Go Report Card GoDoc Build Status Docker Repository on Quay SSL Rating Twitter Follow GitHub followers Subreddit subscribers

ssl-tester

Description

A small Go app intended to help troubleshoot certificate chains.

A detailed use case that prompted the creation of this code was featured on opensource.com. I highly recommend reading it.

Requirements

  • go (if you want to modify paths to certificates you will need to run: go build)
  • Valid TLS keys
  • sudo (or root access) to run the ssl-tester server that binds to port 443

Installing

Installation to your $GOPATH is recommended:

go get github.com/chris-short/ssl-tester

A public and private key at /etc/ssl-tester/tls.crt and /etc/ssl-tester/tls.key respectively are expected. These paths can be symlinks to keypairs in another path.

If you want to compile ssl-tester for another platform you can clone this repo and use go build. I encourage you to read Dave Chaney's Cross compilation with Go to better understand that process.

Container

To build the container you will need to set environment variables in your local environment and pass them through to the container.

Container uses Let's Encrypt (certbot) and Cloudflare to obtain DNS. Say what you want about Cloudflare but it's free and good so it's the lowest barrier to entry.

docker build --build-arg cf_email=$CF_EMAIL --build-arg cf_key=$CF_KEY --build-arg cf_domain=$CF_DOMAIN -t quay.io/chrisshort/ssl-tester .

Yes, this README is not great. Check me, Boo.

Caveats

You might be able to use it to serve a frontend for a small service too if you'd so desire. Pull requests welcome!

License

MIT

Author

Chris Short
https://chrisshort.net

About

A small Go app designed specifically to help troubleshoot certificate chains

Resources

License

Packages

No packages published