|Title: OpenSSL Blacklist|
|computerhelp > Computer Questions > Linux||Go to subcategory：|
Date Posted：02/24/2017 12:47 AMCopy HTML
If you are running a Debian based system such as Ubuntu with the Calomel SSL Validation browser plugin and are getting repeated "Broken/Insecure" red shields on secure sites you use regularly, you can download the package openssl-blacklist to prevent your computer from executing an SSL handshake with a known insecure SSL key. If you get an insecure key you can always reload to do a handshake with another one, but why not prevent an insecure key from ever being used in the first place?
Go to the Debian repository and get the blacklist package and install with GDebi:
If you still get keys coming up as broken, add the openssl-blacklist-extra package.