Achim, thanks!
Furthermore it looks like sslyze doesn't support subjectAltName x.509
extension :(
On 05/18/2012 03:34 PM, Achim Hoffmann wrote:
> Am 17.05.2012 20:21, schrieb Taras:
>
>>
>> [0] http://code.google.com/p/sslyze/
>
> hmm, take care. When I last tested sslyze.py mail.google.com
>
Am 17.05.2012 20:21, schrieb Taras:
>
> [0] http://code.google.com/p/sslyze/
hmm, take care. When I last tested sslyze.py mail.google.com
it does not report that mail.google.com allows following ciphers:
ECDHE-RSA-AES128-SHA, ECDHE-RSA-AES256-SHA, ECDHE-RSA-DES-CBC3-SHA,
ECDHE-RSA-RC4-SHA
ju
Taras,
On Thu, May 17, 2012 at 3:21 PM, Taras wrote:
> Andres,
>
>
>
>>> I plan to add a few small checks and improvements into
>>> audit.sslCertificate plugin. Among them:
>>>
>>> * support of DNS alt names
>>> * checking for *soon* expired certificates
>>
>>
>> I like the second point very much
Andres,
>> I plan to add a few small checks and improvements into
>> audit.sslCertificate plugin. Among them:
>>
>> * support of DNS alt names
>> * checking for *soon* expired certificates
>
> I like the second point very much!
Great :)
>
>> So do you have any ideas what we also need to add to th
Taras,
On Wed, May 16, 2012 at 9:46 AM, Taras wrote:
> Hi, all!
>
> I plan to add a few small checks and improvements into
> audit.sslCertificate plugin. Among them:
>
> * support of DNS alt names
> * checking for *soon* expired certificates
I like the second point very much!
> So do you have a
Hi, all!
I plan to add a few small checks and improvements into
audit.sslCertificate plugin. Among them:
* support of DNS alt names
* checking for *soon* expired certificates
So do you have any ideas what we also need to add to this plugin?
One more question is why do we consider ssl errors as
