diff options
author | dequis <dx@dxzone.com.ar> | 2017-01-06 11:20:49 -0300 |
---|---|---|
committer | dequis <dx@dxzone.com.ar> | 2017-01-06 12:57:53 -0300 |
commit | 69e112fbd1b44a6f9f3380167c12bbe0f76693a1 (patch) | |
tree | 89a54e3a45915459a258eabe412caa715d8ee852 | |
parent | ea7826b0ec097b9fdc29336ff7fe7074052773f5 (diff) | |
download | irssi-69e112fbd1b44a6f9f3380167c12bbe0f76693a1.zip |
NEWS: Avoid explicitly mentioning freenode in the pinning examples
They have proper certs, so using them as an example is wrong.
Particularly worse since they started using letsencrypt recently so
every server has a different cert and pubkey.
We'll figure out how to link this from the release notes later.
-rw-r--r-- | NEWS | 8 |
1 files changed, 4 insertions, 4 deletions
@@ -39,16 +39,16 @@ v1.0.0 2017-01-03 The Irssi team <staff@irssi.org> values like this: Start by downloading the certificate from a given IRC server: - $ openssl s_client -connect chat.freenode.net:6697 < /dev/null 2>/dev/null | \ - openssl x509 > freenode.cert + $ openssl s_client -connect irc.example.net:6697 < /dev/null 2>/dev/null | \ + openssl x509 > example.cert Find the value for -tls_pinned_cert: - $ openssl x509 -in freenode.cert -fingerprint -sha256 -noout + $ openssl x509 -in example.cert -fingerprint -sha256 -noout Find the value for -tls_pinned_pubkey: - $ openssl x509 -in freenode.cert -pubkey -noout | \ + $ openssl x509 -in example.cert -pubkey -noout | \ openssl pkey -pubin -outform der | \ openssl dgst -sha256 -c | \ tr a-z A-Z |