25 results
tagged
ssl x
-
![thumbnail]()
jetstack/cert-manager: Automatically provision and manage TLS certificates in Kubernetes
September 20, 2018 12:11:42 PM GMT+02:00 * - permalink -via Victor, un certificate manager pour kubernetes
- https://github.com/jetstack/cert-manager
-
![thumbnail]()
CAs, certs and keys passed to apiservers are incomprehensible · Issue #54665 · kubernetes/kubernetes
April 6, 2018 10:14:23 AM GMT+02:00 * - permalink -Un bout de documentation qui n'existe pas dans la doc officielle de kubernetes
- https://github.com/kubernetes/kubernetes/issues/54665
-
Automatic check of expiration date of certificatesKoen Van Impe – vanimpe.eu
October 12, 2016 05:25:15 PM GMT+02:00 * - permalink -#!/usr/bin/python # # Check Expiration Date of SSL certificates # # Koen Van Impe # # Uses the file ceds.checks as input ; one entry per line, format <host>:<port> # # ceds.checks : www.google.com:443 # imap.mydomain.tld:993 # from OpenSSL import SSL import socket, datetime import smtplib from email.mime.text import MIMEText servers_to_check = "ceds.checks" alert_days = 5 mail_rcpt = "<>" mail_from = "<>" mail_server = "127.0.0.1" servers = open( servers_to_check, "r") cur_date = datetime.datetime.utcnow() response = "" cert_tested = 0 for line in servers: host = line.strip().split(":")[0] port = line.strip().split(":")[1] try: context = SSL.Context(SSL.SSLv23_METHOD) sock = SSL.Connection(context, socket.socket(socket.AF_INET, socket.SOCK_STREAM)) try: sock.connect( (str(host) , int(port)) ) sock.send("\x00") # Send empty to trigger response get_peer_cert=sock.get_peer_certificate() sock.close() exp_date = datetime.datetime.strptime(get_peer_cert.get_notAfter(),'%Y%m%d%H%M%SZ') days_to_expire = int((exp_date - cur_date).days) cert_tested = cert_tested + 1 if days_to_expire < 0: response = response + "\n %s : %s EXPIRED" % (host, port) elif alert_days > days_to_expire: response = response + "\n %s : %s expires in %s dayes " % (host, port, days_to_expire) #else: #response = response + "\n %s : %s OK" % (host,port) except: response = response + "\n Unable to connect to %s : %s " % (host, port) except SSL.Error,e: print e if response: response = response + "\n\nTotal certificates tested : %s \n" % cert_tested try: message = MIMEText( response ) message["Subject"] = "Certificate check %s " % cur_date message["From"] = mail_from message["To"] = mail_rcpt smtpObj = smtplib.SMTP( mail_server ) smtpObj.sendmail(mail_from, mail_rcpt, message.as_string()) smtpObj.quit() except smtplib.SMTPException: print "Unable to send mail"en modifiant ça, je vias l'intégrer à mon prometheus. Merci l'open source :D
- https://www.vanimpe.eu/2014/04/28/automatic-check-expiration-date-certificates/
-
git-secret
May 16, 2016 09:59:03 AM GMT+02:00 * - permalink -Un tool pas mal pour store des trucs dans git en chiffré :
https://github.com/sobolevn/git-secret- https://sobolevn.github.io/git-secret/#usage
-
SSleuth :: Add-ons for Firefox
October 31, 2015 10:56:23 AM GMT+01:00 * - permalink -Du coup on voit que mozilla pourrait faire mieux niveau chiffrement :D
http://dooby.fr/screen/154310531015.png- https://addons.mozilla.org/en-US/firefox/addon/ssleuth/
-
WoSign: Free 2y multi-domain SSL certificate (SAN/UCC)
May 27, 2015 12:18:32 PM GMT+02:00 * - permalink -une CA chinoise qui propose pour faire de l'opt-in de fournir du certificat gratuitement ... Je préfère attendre let's encrypt pour le moment :D
- https://www.ohling.org/blog/2015/02/wosign-free-2y-ssl-certificate.html
-
Haproxy ssl configuration - install root and intermediate certificate
December 30, 2014 09:38:05 AM GMT+01:00 * - permalink -une petite doc memento pour les intermediate CA dans haproxy
- http://www.drawbackz.com/stack/78293/haproxy-ssl-configuration-install-root-and-intermediate-certificate.html
