linux系统默认的SSL CA证书集合文件
Ubuntu、Debian:
grep "BEGIN" /etc/ssl/certs/ca-certificates.crt | wc -l
CentOS、AliOS:
grep "BEGIN" /etc/ssl/certs/ca-bundle.crt | wc -l
grep "BEGIN" /etc/pki/tls/cert.pem | wc -l
=======
# kdig -d @8.8.8.8 +tls-ca +tls-host=dns.google.com example.com
;; DEBUG: Querying for owner(example.com.), class(1), type(1), server(8.8.8.8), port(853), protocol(TCP)
;; DEBUG: TLS, imported 151 system certificates
...
[ 本帖最后由 linda 于 2020-6-24 20:04 编辑 ]
搜索更多相关主题的帖子:
ubuntu debian centos linux SSL DOT DNS kdig
