Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Turn off TLSv1 warning in intermediate and above #167

Open
pancho-villa opened this issue Aug 28, 2018 · 1 comment
Open

Turn off TLSv1 warning in intermediate and above #167

pancho-villa opened this issue Aug 28, 2018 · 1 comment

Comments

@pancho-villa
Copy link

Hello,

As of June 30th TLSv1 is no longer supported for companies that have to adhere to PCI compliance:

https://blog.pcisecuritystandards.org/migrating-from-ssl-and-early-tls

I was wondering if we can remove the warning for not supporting TLSv1. Or perhaps maybe implement a kind of ignore flag array we can pass in to the command line analyze to skip unnecessary warnings. I'm using this on a domain like this:

`$ python3 analyze.py -l intermediate -t https://www.mydomain.com --nagios
www.mydomain.com:443 has obscure or unknown ssl/tls
and DOES NOT comply with the 'intermediate' level

Changes needed to match the intermediate level:

  • consider enabling TLSv1`

I have rundeck set to run this task daily but it's currently disabled since this is considered an error. I'd be happy to work on the PR but I thought I'd ask first to see what the best option would be.
@tomato42
Copy link
Member

analyze is performing the check against Server Side TLS, so it needs to be removed there before it will get removed here

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@tomato42 @pancho-villa