lib/scanner/ssl_labs.rb in yawast-0.2.1 vs lib/scanner/ssl_labs.rb in yawast-0.2.2
- old
+ new
@@ -54,10 +54,11 @@
Yawast::Scanner::Ssl.get_session_msg_count(uri) if sslsessioncount
puts
end
rescue => e
+ puts
Yawast::Utilities.puts_error "SSL Labs Error: #{e.message}"
end
end
def self.get_cert_info (ep)
@@ -462,9 +463,35 @@
if ep.details.dh_ys_reuse?
Yawast::Utilities.puts_vuln "\t\t\tDH public server param (Ys) reuse: Yes"
else
Yawast::Utilities.puts_info "\t\t\tDH public server param (Ys) reuse: No"
+ end
+
+ if ep.details.protocol_intolerance > 0
+ if ep.details.protocol_intolerance & 1 != 0
+ Yawast::Utilities.puts_warn "\t\t\tProtocol Intolerance: TLS 1.0"
+ end
+
+ if ep.details.protocol_intolerance & (1<<1) != 0
+ Yawast::Utilities.puts_warn "\t\t\tProtocol Intolerance: TLS 1.1"
+ end
+
+ if ep.details.protocol_intolerance & (1<<2) != 0
+ Yawast::Utilities.puts_warn "\t\t\tProtocol Intolerance: TLS 1.2"
+ end
+
+ if ep.details.protocol_intolerance & (1<<3) != 0
+ Yawast::Utilities.puts_warn "\t\t\tProtocol Intolerance: TLS 1.3"
+ end
+
+ if ep.details.protocol_intolerance & (1<<4) != 0
+ Yawast::Utilities.puts_warn "\t\t\tProtocol Intolerance: TLS 1.152"
+ end
+
+ if ep.details.protocol_intolerance & (1<<5) != 0
+ Yawast::Utilities.puts_warn "\t\t\tProtocol Intolerance: TLS 2.152"
+ end
end
puts
end