badssl.com icon indicating copy to clipboard operation
badssl.com copied to clipboard
verified publisher icon chromium

Add invalid-signature.badssl.com

Open april opened this issue 10 years ago • 5 comments

Addresses #26. Just look at that issue, it's the one that you granted me collaborator status on! :smile:

april avatar Dec 28 '15 22:12 april

For the real site, I recommend a CSR just for invalid-signature.badssl.com. If you try to do it to the existing wildcard cert, browsers will complain about duplicate serial numbers instead.

april avatar Dec 28 '15 23:12 april

@lgarron: ping on review :)

april avatar Jan 11 '16 19:01 april

@lgarron: Ping again! It would be quite nice if you could r this. :)

april avatar Feb 10 '16 16:02 april

@marumari This looks good and sensible to me! :)

Hoverbear avatar Feb 17 '16 18:02 Hoverbear

  1. This needs some manual rebasing now.

Is there a way we can do this for prod without issuing additional certs? Create a cert that is purportedly signed by an actual intermediate, but make sure to have a unique serial number and fiddle with the signature?

lgarron avatar Jul 02 '16 00:07 lgarron