Browse Source

Override TLS version **and** ciphers for HTTParty

`set_params` override everything with default parameters if not provided
So if ciphers not specified, reset to the default hardcoded ones
See https://github.com/ruby/ruby/blob/v2_3_0/ext/openssl/lib/openssl/ssl.rb#L124
v1
Aeris 6 years ago
parent
commit
e46a1c14c5
  1. 3
      lib/cryptcheck/tls/https/server.rb

3
lib/cryptcheck/tls/https/server.rb

@ -20,7 +20,8 @@ module CryptCheck
follow_redirects: false,
verify: false,
timeout: SSL_TIMEOUT,
ssl_version: self.supported_protocols.first
ssl_version: self.supported_protocols.first,
ciphers: 'ALL:COMPLEMENTOFALL'
}
if header = response.headers['strict-transport-security']
name, value = header.split '='

Loading…
Cancel
Save