class SSL

Custom resource based on the InSpec resource DSL

def initialize(opts = {})

def initialize(opts = {})
  @host = opts[:host]
  if @host.nil?
    # Transports like SSH and WinRM will provide a hostname
    if inspec.backend.respond_to?('hostname')
      @host = inspec.backend.hostname
    elsif inspec.backend.class.to_s == 'Train::Transports::Local::Connection'
      @host = 'localhost'
    else
      fail 'Cannot determine host for SSL test. Please specify it or use a different target.'
    end
  end
  @port = opts[:port] || 443
  @timeout = opts[:timeout]
  @retries = opts[:retries]
end

def scan_config

def scan_config
  [
    { 'protocol' => 'ssl2', 'ciphers' => SSLShake::SSLv2::CIPHERS.keys },
    { 'protocol' => 'ssl3', 'ciphers' => SSLShake::TLS::SSL3_CIPHERS.keys },
    { 'protocol' => 'tls1.0', 'ciphers' => SSLShake::TLS::TLS10_CIPHERS.keys },
    { 'protocol' => 'tls1.1', 'ciphers' => SSLShake::TLS::TLS10_CIPHERS.keys },
    { 'protocol' => 'tls1.2', 'ciphers' => SSLShake::TLS::TLS_CIPHERS.keys },
  ].map do |line|
    line['ciphers'].map do |cipher|
      { 'protocol' => line['protocol'], 'cipher' => cipher }
    end
  end.flatten
end

def to_s

def to_s
  "SSL/TLS on #{@host}:#{@port}"
end

Instance Methods

Defined in

lib/resources/ssl.rb

Modules

Classes

class SSL

def initialize(opts = {})

def scan_config

def to_s

Instance Methods

Defined in