diff options
| author | Silvio Rhatto <rhatto@riseup.net> | 2013-01-13 15:37:49 -0200 |
|---|---|---|
| committer | Silvio Rhatto <rhatto@riseup.net> | 2013-01-13 15:37:49 -0200 |
| commit | 454c6e3c77b3db507ee81875219089047fc2d5a3 (patch) | |
| tree | 34ea351902ddd6094bc0a96a65b4bc07e9ee83d8 /ssl | |
| download | scripts-454c6e3c77b3db507ee81875219089047fc2d5a3.tar.gz scripts-454c6e3c77b3db507ee81875219089047fc2d5a3.tar.bz2 | |
Initial import
Diffstat (limited to 'ssl')
| -rwxr-xr-x | ssl | 47 |
1 files changed, 47 insertions, 0 deletions
@@ -0,0 +1,47 @@ +#!/bin/bash +# +# This code is licensed under a Creative Commons License. +# http://creativecommons.org/licenses/by-nc-sa/3.0/ +# + +# +# show usage +# +function usage { + echo "SSL Wrapper scripts" + echo "Based on http://www.madboa.com/geek/openssl/" +} + +# +# usage: retrieve-cert.sh remote.host.name [port] +# +function retrieve { + REMHOST=$1 + REMPORT=${2:-443} + + echo |\ + openssl s_client -connect ${REMHOST}:${REMPORT} 2>&1 |\ + sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' +} + +# +# usage: fingerprint cert +# +function fingerprint { + openssl x509 -noout -in $1 -fingerprint + openssl x509 -noout -in $1 -fingerprint -md5 +} + +# Parse option +COMMAND="$1" +shift + +if [ "$COMMAND" == "retrieve" ]; then + retrieve $* +elif [ "$COMMAND" == "verify" ]; then + openssl verify $* +elif [ "$COMMAND" == "fingerprint" ]; then + fingerprint $* +else + usage +fi |