-
I think some algorithms & key sizes should be re-categorized. Instead of just issuing a PR, I thought I'd talk about it first and see if we are on the same page.
1. Non-DH/ECDH cipher suites shoul…
-
**Is your feature request related to a problem? Please describe.**
Running tests via a call to `testssl.sh` and a common commands file for the `--file` option which sets `--jsonfile-pretty` (for dete…
-
**Describe the bug**
After upgrading from Vault version 1.15.4 to 1.15.5, there is high CPU usage on Vault servers when transit operations are called, even with a relatively small number of reque…
-
In going from a ConfigBuilder to a ServerConfig or ClientConfig, there are a number of other possible builder types along the way, and it's important to go from one to the next in the right order. It …
-
It would be useful to be able to have pre-built schemas for common tool outputs, such as from Volatility modules, Eric Zimmerman's suite of tools, popular open-source forensics tools (AmcacheParser, a…
-
Test site: https://seirdy.one/2020/11/23/website-best-practices.html
Mirror with compatible cipher suites: https://envs.net/~seirdy/2020/11/23/website-best-practices.html
Several `` elements on th…
-
When deploying nginx formula to debian stretch with no pillars, it removes ssl_protocols and ssl_prefer_server_ciphers
```
- ##
- # SSL Settings
…
-
I use the default self-signed cert on my unifi server (version 5.1.1) and I get this error even though I have specified the -unifi.insecure flag. Using version 0.2.0 of the exporter.
```
/opt/unifi_e…
-
Logstash doesn't properly restart the beats plugin if it fails. Restarting logstash resolves the problem, but that's not an ideal solution.
```{:timestamp=>"2016-12-01T18:33:51.729000+0000", :messa…
-
Looking through the rustls interface, I realised that, to effectively make dtls work, I'd have to copy a lot of rustls interfaces, or effectively patch their behaviour.
I'm not sure how warranted tha…