windows_hardening icon indicating copy to clipboard operation
windows_hardening copied to clipboard

Published 20 hours ago verified publisher icon 0x6d69636b

TLS PKCS ServerMinKeyBitLength/ClientMinKeyBitLength

Open pmatula opened this issue 2 years ago • 1 comments

Both lists finding_list_microsoft_windows_tls and finding_list_microsoft_windows_tls_future contains: ID1051: "PKCS (ServerMinKeyBitLength)".

But in reality it checks the ClientMinKeyBitLength value name. There seems to be a mismatch. Regarding: https://docs.microsoft.com/en-us/windows-server/security/tls/tls-registry-settings#keyexchangealgorithm---diffie-hellman-key-sizes only ClientMinKeyBitLength exists.

I would therefore suggest changing the description (because the check itself seems correct).

pmatula avatar Jul 29 '22 10:07 pmatula

Absolutely, you are right. I'll fix that in a bit

0x6d69636b avatar Jul 29 '22 17:07 0x6d69636b