beevelop · November 29, 2017 18:28 · Nov 29, 2017 · Nov 29, 2017 · Nov 29, 2017 · Nov 29, 2017
diff --git a/README.md b/README.md
@@ -1,5 +1,5 @@
 # Whitelist SSL
-> This script allows you to whitelist / accept / trust your self-signed / custom / invalid certificate by putting it into your Keychain. This is helpful to convince your favorite browser (Chrome or Opera) to not give a shit about its issuer, whatever.
+> This script allows you to whitelist / accept / trust your self-signed / custom / invalid certificate by putting it into your Keychain. This is helpful to convince your favorite browser (Chrome or Opera) to not give a shit about its issuer or whatever.
 
 ## Quick start
 ```sh
@@ -25,6 +25,7 @@ This script has been successfully tested on
 - Opera Developer 51.0.2781.0
   - Should inform you about „reduced security due to a local, non-public certificate”.
 - Firefox Developer Edition 58.0b7 (64-bit) didn't gave a fuck about my Kechain.
+  - See https://www.bounca.org/tutorials/install_root_certificate.html#browser-firefox
 
 ## Todo
 - [ ] Make the port configurable via `$2`.
diff --git a/README.md b/README.md
@@ -1,4 +1,5 @@
 # Whitelist SSL
+> This script allows you to whitelist / accept / trust your self-signed / custom / invalid certificate by putting it into your Keychain. This is helpful to convince your favorite browser (Chrome or Opera) to not give a shit about its issuer, whatever.
 
 ## Quick start
 ```sh

diff --git a/README.md b/README.md
@@ -14,10 +14,10 @@ chmod +x whitelist_ssl.sh
 ./whitelist_ssl.sh <URL>
 ```
 
-### Changes from Wolph's original implementation
+## Changes from Wolph's original implementation
 - Use `trustAsRoot` (instead of `trustRoot`) in order to automatically enable Always trust.
 
-### Should it work?
+## Should it work?
 This script has been successfully tested on 
 - macOS Sierra 10.12.6
 - Google Chrome Version 63.0.3239.59 (Official Build) beta (64-bit)

diff --git a/README.md b/README.md
@@ -1,5 +1,19 @@
 # Whitelist SSL
 
+## Quick start
+```sh
+git clone https://gist.github.com/beevelop/cf60f88292ad76b0e1bc37ed688c07b4 whiteliste_ssl
+cd whiteliste_ssl
+chmod +x whitelist_ssl.sh
+./whitelist_ssl.sh https://my-self-signed-domain.foobar/whatever/
+```
+
+## Usage
+```
+# URL gets sanitized and can contain the full path
+./whitelist_ssl.sh <URL>
+```
+
 ### Changes from Wolph's original implementation
 - Use `trustAsRoot` (instead of `trustRoot`) in order to automatically enable Always trust.
 
@@ -9,4 +23,7 @@ This script has been successfully tested on
 - Google Chrome Version 63.0.3239.59 (Official Build) beta (64-bit)
 - Opera Developer 51.0.2781.0
   - Should inform you about „reduced security due to a local, non-public certificate”.
-- Firefox Developer Edition 58.0b7 (64-bit) didn't gave a fuck about my Kechain.
+- Firefox Developer Edition 58.0b7 (64-bit) didn't gave a fuck about my Kechain.
+
+## Todo
+- [ ] Make the port configurable via `$2`.
diff --git a/README.md b/README.md
@@ -0,0 +1,12 @@
+# Whitelist SSL
+
+### Changes from Wolph's original implementation
+- Use `trustAsRoot` (instead of `trustRoot`) in order to automatically enable Always trust.
+
+### Should it work?
+This script has been successfully tested on 
+- macOS Sierra 10.12.6
+- Google Chrome Version 63.0.3239.59 (Official Build) beta (64-bit)
+- Opera Developer 51.0.2781.0
+  - Should inform you about „reduced security due to a local, non-public certificate”.
+- Firefox Developer Edition 58.0b7 (64-bit) didn't gave a fuck about my Kechain.
diff --git a/whitelist_ssl_certificates_chrome.sh → whitelist_ssl.sh b/whitelist_ssl_certificates_chrome.sh → whitelist_ssl.sh
@@ -7,7 +7,7 @@ if [[ "$HOST" =~ .*\..* ]]; then
     echo -n | openssl s_client -connect $HOST:443 -servername $HOST \
         | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' \
         | tee "/tmp/$HOST.cert"
-    sudo security add-trusted-cert -d -r trustRoot \
+    sudo security add-trusted-cert -d -r trustAsRoot \
         -k "/Library/Keychains/System.keychain" "/tmp/$HOST.cert"
     rm -v "/tmp/$HOST.cert"
 else

diff --git a/whitelist_ssl_certificates_chrome.sh b/whitelist_ssl_certificates_chrome.sh
@@ -1,14 +1,16 @@
 #!/usr/bin/env bash -e
 
-SERVERNAME=$(echo "$1" | sed -E -e 's/https?:\/\///' -e 's/\/.*//')
-echo "$SERVERNAME"
+HOST=$(echo "$1" | sed -E -e 's/https?:\/\///' -e 's/\/.*//')
 
-if [[ "$SERVERNAME" =~ .*\..* ]]; then
-    echo "Adding certificate for $SERVERNAME"
-    echo -n | openssl s_client -connect $SERVERNAME:443 | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' | tee /tmp/$SERVERNAME.cert
-    sudo security add-trusted-cert -d -r trustRoot -k "/Library/Keychains/System.keychain" /tmp/$SERVERNAME.cert
+if [[ "$HOST" =~ .*\..* ]]; then
+    echo "Adding certificate for $HOST"
+    echo -n | openssl s_client -connect $HOST:443 -servername $HOST \
+        | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' \
+        | tee "/tmp/$HOST.cert"
+    sudo security add-trusted-cert -d -r trustRoot \
+        -k "/Library/Keychains/System.keychain" "/tmp/$HOST.cert"
+    rm -v "/tmp/$HOST.cert"
 else
     echo "Usage: $0 www.site.name"
     echo "http:// and such will be stripped automatically"
 fi
-
diff --git a/whitelist_ssl_certificates_chrome.sh b/whitelist_ssl_certificates_chrome.sh
@@ -0,0 +1,14 @@
+#!/usr/bin/env bash -e
+
+SERVERNAME=$(echo "$1" | sed -E -e 's/https?:\/\///' -e 's/\/.*//')
+echo "$SERVERNAME"
+
+if [[ "$SERVERNAME" =~ .*\..* ]]; then
+    echo "Adding certificate for $SERVERNAME"
+    echo -n | openssl s_client -connect $SERVERNAME:443 | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' | tee /tmp/$SERVERNAME.cert
+    sudo security add-trusted-cert -d -r trustRoot -k "/Library/Keychains/System.keychain" /tmp/$SERVERNAME.cert
+else
+    echo "Usage: $0 www.site.name"
+    echo "http:// and such will be stripped automatically"
+fi
+
No results found