TLS-Scanner icon indicating copy to clipboard operation
TLS-Scanner copied to clipboard

Published 20 hours ago verified publisher icon tls-attacker

ALPACA StrictSNI test issue

Open gj1803 opened this issue 2 years ago • 0 comments

When testing the ALPACA probe I see that the SNI name is set to "notarealtls-attackerhost.com" in the isSupportingStrictSni method, however on my server trace the SNI value is still set to the default (localhost). This causes the SNI mitigation test to fail for the server even though I have implemented strict SNI logic, it seems he SNI value is not being set correctly in the TLSScanner client.

gj1803 avatar Oct 09 '23 04:10 gj1803