2
0
mirror of https://github.com/mozilla/cipherscan.git synced 2024-11-05 07:23:42 +01:00

Analysis wording changes

This commit is contained in:
Julien Vehent 2014-10-09 10:09:44 -04:00
parent a722ad177d
commit cc1230efd9
2 changed files with 6 additions and 5 deletions

View File

@ -229,16 +229,16 @@ and output a level and recommendations.
$ ./analyze.py -t jve.linuxwall.info $ ./analyze.py -t jve.linuxwall.info
jve.linuxwall.info:443 has intermediate tls jve.linuxwall.info:443 has intermediate tls
Failed to pass old level. The following items are failing: Changes needed to match the old level:
* consider enabling SSLv3 * consider enabling SSLv3
* add cipher DES-CBC3-SHA * add cipher DES-CBC3-SHA
* use a certificate with sha1WithRSAEncryption signature * use a certificate with sha1WithRSAEncryption signature
* consider enabling OCSP Stapling * consider enabling OCSP Stapling
Failed to pass intermediate level. The following items are failing: Changes needed to match the intermediate level:
* consider enabling OCSP Stapling * consider enabling OCSP Stapling
Failed to pass modern level. The following items are failing: Changes needed to match the modern level:
* remove cipher AES128-GCM-SHA256 * remove cipher AES128-GCM-SHA256
* remove cipher AES256-GCM-SHA384 * remove cipher AES256-GCM-SHA384
* remove cipher AES128-SHA256 * remove cipher AES128-SHA256
@ -248,6 +248,7 @@ Failed to pass modern level. The following items are failing:
* disable TLSv1 * disable TLSv1
* consider enabling OCSP Stapling * consider enabling OCSP Stapling
``` ```
In the output above, `analyze.py` indicates that the target `jve.linuxwall.info` In the output above, `analyze.py` indicates that the target `jve.linuxwall.info`
matches the intermediate configuration level. If the administrator of this site matches the intermediate configuration level. If the administrator of this site
wants to reach the modern level, the items that failed under the modern tests wants to reach the modern level, the items that failed under the modern tests

View File

@ -258,13 +258,13 @@ def process_results(data, level=None):
# print failures # print failures
if level: if level:
if len(failures[level]) > 0: if len(failures[level]) > 0:
print("\nFailed to pass " + level + " level. The following items are failing:") print("\nChanges needed to match the " + level + " level:")
for failure in failures[level]: for failure in failures[level]:
print("* " + failure) print("* " + failure)
else: else:
for lvl in ['old', 'intermediate', 'modern']: for lvl in ['old', 'intermediate', 'modern']:
if len(failures[lvl]) > 0: if len(failures[lvl]) > 0:
print("\nFailed to pass " + lvl + " level. The following items are failing:") print("\nChanges needed to match the " + lvl + " level:")
for failure in failures[lvl]: for failure in failures[lvl]:
print("* " + failure) print("* " + failure)