Talk:Transport Layer Security

Disable SSLv3 this site has an image with a fake text box that links to https://www.cdn77.com/tls-test So I don't know how to put a note on the wiki about this or just remove the link because it's a fake text box that acts like a fake ad. When I enter a site and it has a text box, I don't except that it's fake and it will jump to an unknow site. This is a tricky behaviour.

—This unsigned comment is by Babalu (talk) 10:01, 7 September 2020‎. Please sign your posts with ~~~~!

This is what I see on the page. I don't see any "fake text box". -- Lahwaacz (talk) 13:30, 7 September 2020 (UTC)Reply[reply]

For me, at the time of this writing, the URL This is what I see on the page is a 404. -- Regid (talk) 11:54, 3 October 2021 (UTC)Reply[reply]

Extensions on a x509 certificate can constrain it to certain domain names reducing the risk of a MITM. I don't understand the nuances of SSL so I'm not sure those should be trusted. Just want to note that this feature exists.

e.g.

 X509v3 Name Constraints: critical
   Permitted:
     DNS:.enablesecurity.net
     DNS:.enablesecurity.com
     DNS:.obscure.ws

To inspect a certificate file:

 openssl x509 -in certificate.pem -text -noout

—This unsigned comment is by Danisztls (talk) 16:14, 9 March 2023. Please sign your posts with ~~~~!