2
0
mirror of https://github.com/mozilla/cipherscan.git synced 2024-11-21 22:13:40 +01:00

Merge pull request #161 from tomato42/phrasing-in-analyze.py

tweak phrasing for analyze.py report
This commit is contained in:
Julien Vehent [:ulfr] 2018-12-12 07:26:27 -05:00 committed by GitHub
commit dced87353e
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -223,7 +223,7 @@ def is_intermediate(results):
failures[lvl].append("use a certificate signed with %s" % " or ".join(inter["certificate_signatures"]))
isinter = False
if not has_pfs:
failures[lvl].append("consider using DHE of at least 2048bits and ECC of at least 256bits")
failures[lvl].append("consider using DHE of at least 2048bits and ECC of 256bits and greater")
if not has_ocsp:
failures[lvl].append("consider enabling OCSP Stapling")
if results['serverside'] != 'True':
@ -272,7 +272,7 @@ def is_modern(results):
failures[lvl].append("use a certificate signed with %s" % " or ".join(modern["certificate_signatures"]))
ismodern = False
if not has_pfs:
failures[lvl].append("use DHE of at least 2048bits and ECC of at least 256bits")
failures[lvl].append("use DHE of at least 2048bits and ECC of at 256bits and greater")
ismodern = False
if not has_ocsp:
failures[lvl].append("consider enabling OCSP Stapling")