ssl-tester icon indicating copy to clipboard operation
ssl-tester copied to clipboard

Published 20 hours ago verified publisher icon chris-short

documentation: must run as root

Open vielmetti opened this issue 6 years ago • 2 comments
trafficstars

If you get permission denied when running this, note that it binds to a low port, and thus on most systems should run as root.

Eds-MacBook-Pro:~ ed$ go/bin/ssl-tester 
2019/02/02 01:29:56 listen tcp :443: bind: permission denied
Eds-MacBook-Pro:~ ed$ sudo go/bin/ssl-tester 
Password:
2019/02/02 01:30:10 open /etc/ssl-tester/fullchain.pem: no such file or directory

vielmetti avatar Feb 02 '19 06:02 vielmetti

What would the preferred behavior be? Force users to run on port 443 or pick a random high port number (I'll look at IANA first)?

chris-short avatar Feb 02 '19 12:02 chris-short

I could see a ssl-tester --port 10433 approach - define the port number at run time - that would allow you to test without clobbering an existing service on an existing port, or needing to necessarily be root.

vielmetti avatar Feb 02 '19 12:02 vielmetti