class Inspec::Resources::SSL

def initialize(opts = {})

def initialize(opts = {})
  @host = opts[:host]
  if @host.nil?
    # Transports like SSH and WinRM will provide a hostname
    if inspec.backend.respond_to?("hostname")
      @host = inspec.backend.hostname
    elsif inspec.backend.class.to_s == "Train::Transports::Local::Connection"
      @host = "localhost"
    end
  end
  @port = opts[:port] || 443
  @timeout = opts[:timeout]
  @retries = opts[:retries]
end

def scan_config

def scan_config
  [
    { "protocol" => "ssl2", "ciphers" => SSLShake::SSLv2::CIPHERS.keys },
    { "protocol" => "ssl3", "ciphers" => SSLShake::TLS::SSL3_CIPHERS.keys },
    { "protocol" => "tls1.0", "ciphers" => SSLShake::TLS::TLS10_CIPHERS.keys },
    { "protocol" => "tls1.1", "ciphers" => SSLShake::TLS::TLS10_CIPHERS.keys },
    { "protocol" => "tls1.2", "ciphers" => SSLShake::TLS::TLS_CIPHERS.keys },
    { "protocol" => "tls1.3", "ciphers" => SSLShake::TLS::TLS13_CIPHERS.keys },
  ].map do |line|
    line["ciphers"].map do |cipher|
      { "protocol" => line["protocol"], "cipher" => cipher }
    end
  end.flatten
end

def to_s

def to_s
  "SSL/TLS on #{@host}:#{@port}"
end

Modules

Classes

class Inspec::Resources::SSL

def initialize(opts = {})

def scan_config

def to_s

Namespace

Instance Methods

Defined in