[ANN] tls_certificate_check: TLS/SSL certificate verification for humans

Fri Oct 1 20:13:59 CEST 2021

Hello everyone,

`tls_certificate_check 1.10.0` has arrived.

Highlights:
- DST Root CA X3[*], now expired, was removed

Links:
- Hex package: https://hex.pm/packages/tls_certificate_check/1.10.0
- Documentation: https://hexdocs.pm/tls_certificate_check/1.10.0/
- Source code (GitHub):
https://github.com/g-andrade/tls_certificate_check/tree/1.10.0
- Source code (GitLab):
https://gitlab.com/g-andrade/tls_certificate_check/-/tree/1.10.0

[*]: For details on the underlying problem: https://blog.voltone.net/post/30

On Thu, 21 May 2020 at 02:44, Guilherme Andrade <g@REDACTED> wrote:

> Hello list,
>
> I've the pleasure to announce the release of `tls_certificate_check`, a
> library that packs the boilerplate required for verifying the authenticity
> of certificates presented by TLS servers against a list of trusted
> certificate authorities.
>
> It wraps `certifi`[1] and `ssl_verify_fun`[2] together with the code
> required for verifying certificate chains in non canonical order.
>
> It's simple enough to use:
>
>     Host = "example.com",
>     Port = 443,
>     TLSOptions = tls_cerificate_check:options(Host),
>     ssl:connect(Host, 443, TLSOptions).
>
> You'll no longer need to copy the usual CA validation boilerplate
> everywhere!
>
> * Hex package: https://hex.pm/packages/tls_certificate_check/1.0.0
> * Documentation: https://hexdocs.pm/tls_certificate_check/1.0.0/
> * Source code (GitHub):
> https://github.com/g-andrade/tls_certificate_check/tree/1.0.0
> * Source code (GitLab):
> https://gitlab.com/g-andrade/tls_certificate_check/-/tree/1.0.0
>
> [1]: https://github.com/certifi/erlang-certifi
> [2]: https://github.com/deadtrickster/ssl_verify_fun.erl
>
> --
> Guilherme
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://erlang.org/pipermail/erlang-questions/attachments/20211001/2d578568/attachment.htm>