Skip to content

Commit 7480c0f

Browse files
mxsashamxsasha
committed
To be discussed, but KEX hash and PKCS are "onvoldoende" in TLS-guidelines, so status fail and score penalty seems fitting
1 parent 97f3b24 commit 7480c0f

File tree

1 file changed

+2
-2
lines changed

1 file changed

+2
-2
lines changed

checks/scoring.py

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -199,12 +199,12 @@
199199
TLS_KEX_RSA_PKCS_GOOD = FULL_WEIGHT_POINTS
200200
TLS_KEX_RSA_PKCS_OK = FULL_WEIGHT_POINTS
201201
TLS_KEX_RSA_PKCS_BAD = NO_POINTS
202-
TLS_KEX_RSA_PKCS_WORST_STATUS = STATUS_NOTICE
202+
TLS_KEX_RSA_PKCS_WORST_STATUS = STATUS_FAIL
203203

204204
WEB_TLS_KEX_HASH_FUNC_GOOD = FULL_WEIGHT_POINTS
205205
WEB_TLS_KEX_HASH_FUNC_OK = FULL_WEIGHT_POINTS
206206
WEB_TLS_KEX_HASH_FUNC_BAD = NO_POINTS
207-
WEB_TLS_KEX_HASH_FUNC_WORST_STATUS = STATUS_NOTICE
207+
WEB_TLS_KEX_HASH_FUNC_WORST_STATUS = STATUS_FAIL
208208

209209
WEB_APPSECPRIV_X_FRAME_OPTIONS_GOOD = FULL_WEIGHT_POINTS
210210
WEB_APPSECPRIV_X_FRAME_OPTIONS_BAD = NO_POINTS

0 commit comments

Comments
 (0)