javabeanz

Thanks for your contribution, Rahulaga. Next step is making the docuemtnation match the new functionality.

same here. gcc version 11.2.1 20211203 (Red Hat 11.2.1-7) (GCC)

you can alter the ansible version in the installation script from 2.6.x to 2.7.1.1 as a temporary workaround.

Maybe use rating from Qualys : https://www.ssllabs.com/projects/rating-guide/index.html

Maybe also interesting : Insecure renegotiation, interoperability issues, system clock mismatches, DH vulns, forward secrecy, protocol downgrade, client side TLS issues, client side TLS certificates evaluation nice threat model :...

SSL Diagnostics tool in java : http://support.sas.com/kb/57/370.html#download

Certificate Transparency : https://www.certificate-transparency.org/ and https://github.com/google/certificate-transparency (java CT client) OpenJDK test classes can also be interesting for inspiration : http://cr.openjdk.java.net/~xuelei/7093640/webrev.01/test/sun/security/ssl/com/sun/net/ssl/internal/ssl/DHKeyExchange/DHEKeySizing.java.html

Android SSL has it's own issues; wilcard certificates should be flagged as well as private IP certificates (19.168.x.x networks and so on) . OWASP website has some great info :...

Thanks !

and also break the build if there are too many serious issues with it. maybe a report could be generated just like PMD/Checkstyle/Findbugs do. would like to help out here