On 2014-11-20 10:27, Patrik Båt wrote: > On 2014-11-20 10:18, Matthias Schneider wrote: >> Am 20.11.2014 um 10:07 schrieb Patrik Båt: >>> Hello! >>> >>> The fingerprint that posttls-finger is returning, what fingerprint is >>> this? it doesn’t match the one I'm getting from the certificate using: >>> >>> openssl x509 -in cert.pem -noout -pubkey | openssl rsa -pubin -outform >>> DER | openssl dgst -md5 -c >>> >>> Best regards, Patrik. >>> >> Hello, >> >> try: >> openssl x509 -in cert.pem -fingerprint >> >> on my system the returned SHA1 fingerprint is the same as in >> posttls-finger >> >> Best regards, >> Matthias Schneider > Ah thanks for the heads up, posttls-finger returned sha1, probably > because it runs OpenSSL 1.0.x. "The best practice algorithm is now sha1", maybe thats why it is default in posttls-finger, or what do you say Viktor? :)
signature.asc
Description: OpenPGP digital signature