def __init__(self, **kwargs):
BaseRating.__init__(self, **kwargs)
self.add_rule(
RatingRule("cipher.bits",
rules=[
lambda v, i, kb: 6
if v == 0 else None, lambda v, i, kb: 5
if v < 128 else None, lambda v, i, kb: 2
if v < 256 else None, lambda v, i, kb: 1
if v >= 256 else None
]))
self.add_rule(
RatingRule("cipher.protocol_version",
rules=[
lambda v, i, kb: 6
if v == reg.version.SSLv2 else None,
lambda v, i, kb: 1
if v == reg.version.TLSv12 else None,
]))
self.add_rule(
RatingRule("server.renegotiation.secure",
rules=[
lambda v, i, kb: 6
if v == False else None, lambda v, i, kb: 1
if v == True else None
]))
def __init__(self, **kwargs):
BaseRating.__init__(self, **kwargs)
self.add_rule(
RatingRule("cipher.bits",
rules=[
lambda v, i, kb: 6
if v == 0 else None, lambda v, i, kb: 5
if v < 128 else None, lambda v, i, kb: 3
if v < 256 else None, lambda v, i, kb: 0
if v >= 256 else None
]))
self.add_rule(
RatingRule(
"cipher.protocol_version",
result_descriptions={
"poodle": "",
"sslv2":
"SSLv2 is insecure and has been superseeded by SSLv3",
},
result_refs={
"poodle": ["cve:CVE-2014-3566"],
},
rules=[
lambda v, i, kb: (6, "sslv2")
if v == reg.version.SSLv2 else None,
lambda v, i, kb: (5, "poodle")
if v == reg.version.SSLv3 else None,
lambda v, i, kb: 1 if v == reg.version.TLSv12 else None,
]))
self.add_rule(
RatingRule("server.certificate.x509.signature_algorithm",
rules=[
lambda v, i, kb: 6 if v.startswith("md2") else None,
lambda v, i, kb: 6 if v.startswith("md5") else None,
]))
self.add_rule(
RatingRule(
"server.certificate.x509.not_after",
rules=[lambda v, i, kb: 6 if v < datetime.now() else None],
))
self.add_rule(
RatingRule(
"server.certificate.x509.not_before",
rules=[lambda v, i, kb: 6 if v > datetime.now() else None],
))
self.add_rule(
RatingRule("server.renegotiation.secure",
rules=[
lambda v, i, kb: 6
if v == False else None, lambda v, i, kb: 1
if v == True else None
]))
def __init__(self, **kwargs):
BaseRating.__init__(self, **kwargs)
self.add_rule(
RatingRule("cipher.bits",
rules=[
lambda v, i, kb: 1
if v > 56 else None, lambda v, i, kb: 3
if v > 40 else None, lambda v, i, kb: 5
]))
self.add_rule(
RatingRule("cipher.protocol_version",
rules=[
lambda v, i, kb: 6
if v == reg.version.SSLv2 else None,
]))
self.add_rule(
RatingRule(
"cipher.name",
rules=[
lambda v, i, kb: 5
if "EXP" in v else None, lambda v, i, kb: 3
if "RC" in v else None, lambda v, i, kb: 5
if "ADH" in v else None
],
))
self.add_rule(
RatingRule("server.renegotiation.secure",
rules=[
lambda v, i, kb: 6
if v == False else None, lambda v, i, kb: 1
if v == True else None
]))
def __init__(self, **kwargs):
BaseRating.__init__(self, **kwargs)
self.add_rule(
RatingRule("cipher.bits",
rules=[
lambda v, i, kb: 6
if v == 0 else None, lambda v, i, kb: 5
if v < 128 else None, lambda v, i, kb: 3
if v < 256 else None, lambda v, i, kb: 0
if v >= 256 else None
]))
self.add_rule(
RatingRule("cipher.protocol_version",
rules=[
lambda v, i, kb: 6
if v == reg.version.SSLv2 else None,
lambda v, i, kb: 1
if v == reg.version.TLSv12 else None,
]))
self.add_rule(
RatingRule("server.certificate.x509.signature_algorithm",
rules=[
lambda v, i, kb: 6 if v.startswith("md2") else None,
lambda v, i, kb: 6 if v.startswith("md5") else None,
]))
self.add_rule(
RatingRule(
"server.certificate.x509.not_after",
rules=[lambda v, i, kb: 6 if v < datetime.now() else None],
))
self.add_rule(
RatingRule(
"server.certificate.x509.not_before",
rules=[lambda v, i, kb: 6 if v > datetime.now() else None],
))
self.add_rule(
RatingRule("server.renegotiation.secure",
rules=[
lambda v, i, kb: 6
if v == False else None, lambda v, i, kb: 1
if v == True else None
]))