Page 1
In Headers/ Padlocks / site Seals / CA’s we trust !
Page 3
Certificate authorities…
Available online testing services
checking: - server headers - https cert instalations
Page 4
Certificate authorities…
checking: - server headers - https cert instalations
Test my server please
Page 5
Certificate authorities…
Test my server please
Page 6
Certificate authorities… checking https / cert instalations
GeoTrust
GeoTrust, a leading certificate authority,
provides retail and reseller services for SSL encryption, and website authentication, digital
signatures, code signing, secure email, and enterprise SSL products
Page 7
Certificate authorities… checking https / cert instalations
GeoTrust
Page 8
Certificate authorities… checking https / cert instalations
GeoTrust
Page 9
Certificate authorities… checking https / cert instalations
Server: header field :)
Page 10
Certificate authorities… checking https / cert instalations
HSTS header field :)
Page 11
Certificate authorities… checking https / cert instalations
HSTS header field :)
Page 12
Certificate authorities… checking https / cert instalations
RapidSSL
RapidSSL is on a mission to help you secure your domain with SSL as fast as possible. We’ve
streamlined and automated every part of the enrollment and authentication processes
Page 13
Certificate authorities… checking https / cert instalations
RapidSSL
Page 14
Certificate authorities… checking https / cert instalations
Server: header field :)
Page 15
Certificate authorities… checking https / cert instalations
HSTS header field :)
Page 16
Certificate authorities… checking https / cert instalations
HSTS header field :)
Page 17
Certificate authorities… checking https / cert instalations
Symantec
Cyber Security Services
Strengthen your security with our experts,
global threat intelligence, advanced monitoring, incident response, and cyber readiness services.
Page 18
Certificate authorities… checking https / cert instalations
Symantec
Page 19
Certificate authorities… checking https / cert instalations
Server: header field :)
Page 20
Certificate authorities… checking https / cert instalations
HSTS header field :)
Page 21
Certificate authorities… checking https / cert instalations
HSTS field :)
Page 22
Certificate authorities… checking https / cert instalations
wait there must be something better…
Page 23
Certificate authorities… checking https / cert instalations
Thawte
As a leading global certificate authority,
Thawte provides online security trusted by millions
around the world. Expert support, robust
authentication practices, and easy online management make Thawte the best value for SSL
certificates and code signing certificates.
Page 24
Certificate authorities… checking https / cert instalations
Thawte
Page 25
Certificate authorities… checking https / cert instalations
Server: header field :)
Page 26
Certificate authorities… checking https / cert instalations
HSTS header field :)
Page 27
Certificate authorities… checking https / cert instalations
HSTS header field :)
Page 28
Certificate authorities… checking https / cert instalations
See a pattern here?
Page 29
Certificate authorities… checking https / cert instalations
Security headers in apache2.conf
Page 30
Certificate authorities… checking https / cert instalations
My Server Signature =)
It runs on ZxSpectrum !!
Page 31
Certificate authorities… checking https / cert instalations
should i report this?…i’ve tried…
Page 32
Certificate authorities… checking https / cert instalations
should i report this?…i’ve tried
Page 33
Certificate authorities… checking https / cert instalations
should i report this?…i’ve tried
Page 34
Certificate authorities… checking https / cert instalations
and…got a hit
Page 35
Certificate authorities… checking https / cert instalations
and…got a hit
Page 36
Certificate authorities… checking https / cert instalations
OK, now someone who really knows security…
Page 37
Certificate authorities… checking https / cert instalations
OK, now someone who really knows security…
Page 38
Certificate authorities… checking https / cert instalations
OK, now someone who really knows security…
Page 39
Certificate authorities… checking https / cert instalations
OK, now someone who really knows security…
Page 40
Certificate authorities… checking https / cert instalations
OK, now someone who really knows security…
Certificate fields: OU, CN, blah
Page 41
Certificate authorities… checking https / cert instalations
OK, now someone who really knows security…
Page 42
Certificate authorities… checking https / cert instalations
OK, now someone who really knows security…
Page 43
Certificate authorities… checking https / cert instalations
OK, now someone who really knows security…
Page 44
Certificate authorities… checking https / cert instalations
OK, now someone who really knows security…
Page 45
Certificate authorities… checking https / cert instalations
OK, now someone who really knows security…
Page 46
Certificate authorities… checking https / cert instalations
OK, now RapidSSLonline.com
Now, let’s check the CSR checking service
Page 47
OK, now RapidSSLonline.com
Page 48
OK, now RapidSSLonline.com
Page 49
OK, now RapidSSLonline.com
CSR email field
Page 50
OK, back to RapidSSLonline.com
OK, i’ve tried to report… and got this mail…
Page 51
OK, back to RapidSSLonline.com
OK, i’ve tried to report… and got this mail…
Page 52
https://sslshopper.com Both tests:
SSL checker / server header CSR decoder
Page 53
https://sslshopper.com Both tests:
SSL checker / server header CSR decoder
Page 54
https://sslshopper.com
Page 55
https://sslshopper.com
Page 56
https://sslshopper.com
Page 57
https://sslshopper.com
Page 58
https://sslshopper.com
Page 59
https://sslshopper.com -> private key?? what ??
Page 60
Let’s try “European leader in website security…”
Page 61
Let’s try “European leader in website security…”
Page 62
Let’s try “European leader in website security…”
Page 63
Let’s try “European leader in website security…”
Page 64
Let’s try “European leader in website security…”
Page 65
Let’s try “European leader in website security…”
Page 66
Let’s try “European leader in website security…”
Page 67
Let’s try “European leader in website security…”
Page 68
Let’s try “European leader in website security…”
Page 69
Let’s try “European leader in website security…”
Page 70
Let’s try “European leader in website security…”
Page 71
Let’s try “European leader in website security…”
Page 72
OK, now some other sites:
Page 81
OK, other sites: private key??
Page 82
OK, other sites: CDN
KEYCDN also offers a great test
Page 83
OK, other sites: CDN
Page 84
OK, other sites: CDN
Page 85
OK, other sites: CDN