certspotter icon indicating copy to clipboard operation
certspotter copied to clipboard
verified publisher icon SSLMate

Avoid duplicate alerts for same certificates or renewals

Open oskar456 opened this issue 7 years ago • 5 comments

To avoid unnecessary noise, it would be nice if there were options:

  • not to report a certificate that has been already reported in some different log
  • not to report a certificate sharing public key with an already reported certificate (targeted mostly for renewals without rekeying)

Thanks for this great peace of software!

oskar456 avatar Apr 09 '18 12:04 oskar456

Cert Spotter already suppresses notifications for duplicate certificates, as long as you don't specify the -no_save option.

The second suggestion is a good one.

AGWA avatar Apr 09 '18 15:04 AGWA

One caveat: Cert Spotter considers the pre-certificate and final certificate to be different, so you may get up to two alerts for a single issuance. It would be good to deduplicate those alerts too.

AGWA avatar Apr 09 '18 20:04 AGWA