diff options
| author | Linus Nordberg <linus@nordberg.se> | 2016-02-09 10:07:44 +0100 |
|---|---|---|
| committer | Linus Nordberg <linus@nordberg.se> | 2016-02-09 10:07:44 +0100 |
| commit | 2a25a99fe47a00a75af29a42767e67c018740eae (patch) | |
| tree | 3796033c40839e41a436c56b4ac6e34bf6d242fd /scanning.md | |
Initial revision.
Diffstat (limited to 'scanning.md')
| -rw-r--r-- | scanning.md | 17 |
1 files changed, 17 insertions, 0 deletions
diff --git a/scanning.md b/scanning.md new file mode 100644 index 0000000..b5733e1 --- /dev/null +++ b/scanning.md @@ -0,0 +1,17 @@ +# We're scanning the internet (IPv4) for X.509 certificate chains + +As part of project [catlfish](https://www.ct.nordu.net), we are +scanning the internet for X.509 certificate chains. We will put them +all into our +[Certificate Transparency](http://www.certificate-transparency.org/) +log. + +If you look closely at your network and find TCP connection attempts +to port 443 from 130.229.192.10, that's us. For hosts allowing TCP to +port 443, we will try to establish a TLS session. If that succeeds we +will gather the X.509 certificate data sent to us as part of the TLS +handshake, send a "HEAD /index.html" and then disconnect. + +If you have questions or comments, or if you want your netblock(s) to +be exempted from scanning, please contact linus at nordu.net (8C4C +D511 095E 982E B0EF BFA2 1E8B F349 2329 1265). |