curl https://exampleconfig.com/api/v1/config/original/5b561a90362b8eb9127c792c3f5902e0?hint=ct_log_list.cnf.dist
wget -O ct_log_list.cnf.dist https://exampleconfig.com/api/v1/config/original/5b561a90362b8eb9127c792c3f5902e0?hint=ct_log_list.cnf.dist
# This file specifies the Certificate Transparency logs # that are to be trusted. # Google's list of logs can be found here: # www.certificate-transparency.org/known-logs # A Python program to convert the log list to OpenSSL's format can be # found here: # https://github.com/google/certificate-transparency/blob/master/python/utilities/log_list/print_log_list.py # Use the "--openssl_output" flag.
sudo apk add openssl
sudo apt update && sudo apt install openssl
sudo yum install openssl
sudo apt update && sudo apt install openssl
Use this original configuration file when you need to restore OpenSSL to its default state after misconfiguration, during fresh installations, or as a baseline for customization. It's particularly useful for troubleshooting when your current config isn't working properly.
Download this file and replace your current configuration at /etc/ssl/ct_log_list.cnf.dist
. Make sure to backup your existing configuration first, then restart the OpenSSL service to apply the changes.
This is the factory-default configuration that ships with OpenSSL on Alpine Linux v3.21. While it provides a secure baseline, you should review and customize security settings based on your specific production requirements and compliance needs.
This configuration is specifically from Alpine Linux v3.21. Different operating systems and versions may have slightly different default settings, security patches, or feature availability. Check the compatibility section above for other OS versions.
Yes, this original configuration is excellent for troubleshooting. Compare it with your current settings to identify modifications that might be causing issues, or temporarily replace your config with this one to isolate problems.