Hello,
I'm a Ph.D. student in U.S. I am using ssllabs-scan to download certificates of a bunch of domains.
Recently I found that around 20 mins are needed for scanning a single domain which is too slow for me.
I have roughly 7K domains need to be scanned.
Please advise me on how should I speed up this scanning process.
Many thanks,
Zack
If all you need are the certificates, then SSL Labs is a very inefficient solution. To just download certificates, I'd suggest the openssl s_client command line interface.
/docs/manmaster/man1/openssl-s_client.html
I'd start with something along the lines of this:
If you want all the grading and reporting offered by SSL Labs, then you must wait for the reports. There are many tests to perform to check for all known vulnerabilities and exploits. The test is deliberately paced to avoid overloading the hosts being tested. Note, tests typically take 1 to 2 minutes per IP address. If a domain name is backed by 10 IP addresses, then 20 minutes to provide the test results is not unusual.
If you are experiencing 20 minutes waits for domain names backed by a single IP address, then please let us know and please share the API responses for the test.
Lastly, when scanning in bulk, please be sure you follow the rates and limits set forth in our documentation.
SSL Labs Access Rate and Rate Limiting