Disable SSLv3 this site has an image with a fake text box that links to https://www.cdn77.com/tls-test So I don't know how to put a note on the wiki about this or just remove the link because it's a fake text box that acts like a fake ad. When I enter a site and it has a text box, I don't except that it's fake and it will jump to an unknow site. This is a tricky behaviour.
- This is what I see on the page. I don't see any "fake text box". -- Lahwaacz (talk) 13:30, 7 September 2020 (UTC)
Extensions on a x509 certificate can constrain it to certain domain names reducing the risk of a MITM. I don't understand the nuances of SSL so I'm not sure those should be trusted. Just want to note that this feature exists.
X509v3 Name Constraints: critical Permitted: DNS:.enablesecurity.net DNS:.enablesecurity.com DNS:.obscure.ws
To inspect a certificate file:
openssl x509 -in certificate.pem -text -noout