Browse Source

Override TLS version **and** ciphers for HTTParty

`set_params` override everything with default parameters if not provided
So if ciphers not specified, reset to the default hardcoded ones
See https://github.com/ruby/ruby/blob/v2_3_0/ext/openssl/lib/openssl/ssl.rb#L124
master
Aeris 3 years ago
parent
commit
e46a1c14c5
1 changed files with 2 additions and 1 deletions
  1. 2
    1
      lib/cryptcheck/tls/https/server.rb

+ 2
- 1
lib/cryptcheck/tls/https/server.rb View File

@@ -20,7 +20,8 @@ module CryptCheck
20 20
 														   follow_redirects: false,
21 21
 														   verify:           false,
22 22
 														   timeout:          SSL_TIMEOUT,
23
-														   ssl_version:      self.supported_protocols.first
23
+														   ssl_version:      self.supported_protocols.first,
24
+														   ciphers:          'ALL:COMPLEMENTOFALL'
24 25
 												   }
25 26
 						if header = response.headers['strict-transport-security']
26 27
 							name, value = header.split '='

Loading…
Cancel
Save