When should I use this ct_log_list.cnf?
Restore it. Compare it. Start clean.
OpenSSL /etc/ssl/ct_log_list.cnf
Original
๐ Alpine Linux v3.21
9 lines
Works On
Viewing:
Alpine Linux v3.21
Same on:
Other versions:
Details
- Size
- 9 lines
- MD5
- 5b561a90362b8eb9127c792c3f5902e0
- SHA256
- f1c1803d13d1d0b755b13b23c28bd4e20e07baf9f2b744c9337ba5866aa0ec3b
Copy & Paste
curl:
curl https://exampleconfig.com/api/v1/config/original/5b561a90362b8eb9127c792c3f5902e0?hint=ct_log_list.cnf
wget:
wget -O ct_log_list.cnf https://exampleconfig.com/api/v1/config/original/5b561a90362b8eb9127c792c3f5902e0?hint=ct_log_list.cnf
For AI Agents
You are a DevOps agent. Fetch the default OpenSSL config for Alpine Linux v3.21 from https://exampleconfig.com/api/v1/config/original/5b561a90362b8eb9127c792c3f5902e0?hint=ct_log_list.cnf. Compare with my current /etc/ssl/ct_log_list.cnf and summarize differences and safe changes.
Copy this prompt into Claude, ChatGPT, or other AI assistants.
/etc/ssl/ct_log_list.cnf
# This file specifies the Certificate Transparency logs # that are to be trusted. # Google's list of logs can be found here: # www.certificate-transparency.org/known-logs # A Python program to convert the log list to OpenSSL's format can be # found here: # https://github.com/google/certificate-transparency/blob/master/python/utilities/log_list/print_log_list.py # Use the "--openssl_output" flag.
Install OpenSSL
Alpine Linux
sudo apk add openssl
Debian
sudo apt update && sudo apt install openssl
Red Hat Enterprise Linux
sudo yum install openssl
Ubuntu
sudo apt update && sudo apt install openssl
File Location
FAQ
How do I restore OpenSSL defaults?
Download, replace, restart.
Is ct_log_list.cnf safe for production?
Yes. This is exactly what shipped. Safe starting point.
How does this differ from other OS versions?
Defaults change. This one is specific to Alpine Linux v3.21.
Can I use this for OpenSSL troubleshooting?
Absolutely. Diff this against yours to spot the problem.
