This check checks if the CSR's name contains a field with no value. For example, the CSR Decoder would issue a warning about the name given below because the locality field is present, but has no value.
CN=www.acme.com, O=acme, L=, C=gb
The reason for this warning is that some CAs may reject CSRs that contain fields with empty values.
Checks for weak RSA keys generated by Debian-based
systems. It uses the dowkd blacklist, which may be incomplete.
This page contains CSRs and certificates with known weak keys. Please let us know if it fails to identify a CSR or certificate you know to have weak key.
In May 2008, the Debian team announced that Luciano Bello
had discovered a vulnerabilty in the
Debian OpenSSL package. The impact was that all SSL and SSH
keys generated on Debian-based systems (including Ubuntu)
released between September 2006 and May 13th 2008 may be affected.
The Debian Security Team disclosed
this vulnerability in
Debian Security Advisory 1571.
The best resource on this vulnerability is the
Debian Wiki.
We have also written about this in our
CSR FAQ.
My Certificates
Getting Started
Getting started couldn't be easier, simply create an account (IT'S FREE) then log in and start adding certificates to your own portfolio.
What is My Certificates?
My Certificates is a tool that enables you to keep track of your SSL certificates in one place. It's easy to add the certificates you want to track and get a consolidated view across your SSL certificate portfolio. It flags certificates that are approaching expiry and shows the number of days remaining on each certificate. Furthermore, by clicking on any certificate in the main view you can see the certificate's details and also annotate it with contact information and notes.
Screenshots