List of self-signed certificates on the server Is there a way to list all the self-signed certificate on the server, or maybe verify if a certificate for a port is a self-signed certificate or not?--prophetes.ai

List of self-signed certificates on the server Is there a way to list all the self-signed certificate on the server, or maybe verify if a certificate for a port is a self-signed certificate or not?

All certificates is difficult, since technically, every piece of server software could have its own certificates in non-standard locations. If you know the port you're interested in, run something along the lines of

openssl s_client -connect your.host.example:443 -showcerts

and look at the certificate chain. Your usual self-signed certificate would probably have a chain length of 1, on account of being self-signed.