sjs/vdirsyncer
1
0
Fork 0
mirror of https://github.com/samsonjs/vdirsyncer.git synced 2026-04-27 14:57:41 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Document that SHA256 fingerprints already work

Browse source 
Fix #321
This commit is contained in:
Markus Unterwaditzer 2016-01-15 21:35:34 +01:00
parent a87ab770f8
commit 7583be5826
1 changed files with 4 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
docs/ssl-tutorial.rst
View file

@ -9,7 +9,7 @@ All SSL configuration is done per-storage.
Pinning by fingerprint Pinning by fingerprint
---------------------- ----------------------
To pin the certificate by SHA1- or MD5-fingerprint:: To pin the certificate by fingerprint::
[storage foo] [storage foo]
type = caldav type = caldav
@ -17,6 +17,9 @@ To pin the certificate by SHA1- or MD5-fingerprint::
verify_fingerprint = "94:FD:7A:CB:50:75:A4:69:82:0A:F8:23:DF:07:FC:69:3E:CD:90:CA" verify_fingerprint = "94:FD:7A:CB:50:75:A4:69:82:0A:F8:23:DF:07:FC:69:3E:CD:90:CA"
#verify = false # Optional: Disable CA validation, useful for self-signed certs #verify = false # Optional: Disable CA validation, useful for self-signed certs
SHA1-, SHA256- or MD5-Fingerprints can be used. They're detected by their
length.
You can use the following command for obtaining a SHA-1 fingerprint:: You can use the following command for obtaining a SHA-1 fingerprint::
echo -n | openssl s_client -connect unterwaditzer.net:443 | openssl x509 -noout -fingerprint echo -n | openssl s_client -connect unterwaditzer.net:443 | openssl x509 -noout -fingerprint