sslscan icon indicating copy to clipboard operation
sslscan copied to clipboard

Published 20 hours ago verified publisher icon rbsec

feature request to support policy file

Open superuser5 opened this issue 6 years ago • 1 comments

It would be great to have support for policy file which says what is the expected configuration and sslscan reports misconfigurations, like ssh_scan by Mozilla..

superuser5 avatar May 03 '19 17:05 superuser5

Hi @superuser5,

Ideally you would be aiming for everything to be green in sslscan's output (which is a modern, TLS 1.2 + GCM setup). For reasons discussed in the README and elsewhere sslscan isn't really under active development any more. I'd be happy to include this as a feature if someone wants to write the code and PR it, but it's not something that I'm planning to develop.

As alternative might be to parse the XML output against a known profile? Could be a fairly simple Python script (rather than having to do it in C with sslscan).

rbsec avatar May 14 '19 15:05 rbsec