Hi Steven Winderlich,
Seems so,
Well I like a check like this example from DigiCert® SSL Installation Diagnostics Tool:
DNS resolves '
www.security.nl' to 213.156.0.246
HTTP Server Header: Apache
SSL certificate
Common Name =
www.security.nlSubject Alternative Names =
www.security.nlIssuer = Thawte DV SSL CA
Or Why no padlock?
Domain Name:
www.security.nlURL Tested:
https://www.security.nlNumber of items downloaded on page: 24
Valid Certificate found.
Certificate valid through: Dec 13 23:59:59 2013 GMT
Certificate Issuer: Thawte, Inc.
All 24 items called securely!
Serial Number = 67ED771B1120A17564A4685737F1D84A
SHA1 Thumbprint = 3C6925620CBFBE09098886F4306F32DE0A363E29
Key Length = 2048 bit
Signature algorithm = SHA1 + RSA (good)
Secure Renegotiation: Supported
SSL ciphers supported by the server
TLS_RSA_WITH_RC4_128_MD5
TLS_RSA_WITH_RC4_128_SHA
TLS_RSA_WITH_3DES_EDE_CBC_SHA
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
TLS_RSA_WITH_AES_128_CBC_SHA
TLS_DHE_RSA_WITH_AES_128_CBC_SHA
TLS_RSA_WITH_AES_256_CBC_SHA
TLS_DHE_RSA_WITH_AES_256_CBC_SHA
TLS_RSA_WITH_AES_128_CBC_SHA256
TLS_RSA_WITH_AES_256_CBC_SHA256
TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA
TLS_RSA_WITH_SEED_CBC_SHA
TLS_DHE_RSA_WITH_SEED_CBC_SHA
TLS_RSA_WITH_AES_128_GCM_SHA256
TLS_RSA_WITH_AES_256_GCM_SHA384
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
This certificate does not use a vulnerable Debian key (this is good)
SSL Certificate expiration
The certificate expires December 13, 2013 (78 days from today)
Certificate Name matches
www.security.nl Subject
www.security.nl Valid from 13/Dec/2012 to 13/Dec/2013
Issuer Thawte DV SSL CA
Subject Thawte DV SSL CA
Valid from 18/Feb/2010 to 17/Feb/2020
Issuer thawte Primary Root CA
Subject thawte Primary Root CA
Valid from 17/Nov/2006 to 30/Dec/2020
Issuer Thawte Premium Server CA
SSL Certificate is correctly installed
or this examplke from Why No Padlock?
Domain Name:
www.security.nlURL Tested:
https://www.security.nlNumber of items downloaded on page: 24
Valid Certificate found.
Certificate valid through: Dec 13 23:59:59 2013 GMT
Certificate Issuer: Thawte, Inc.
All 24 items called securely!
polonus