UNPKG

@passmarked/ssl

Version:

Rules that relate to checking the SSL configuration of each individual resolved server from the domain to ensure locked down config with the broadest compatibility

github.com/passmarked/ssl

passmarked/ssl

44 lines (30 loc) 781 B
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
// pull in our modules const S = require('string'); const url = require('url'); /** * Pulls the certificate and checks ge **/ module.exports = exports = function(payload, fn) { // get the data var data = payload.getData(); // only if SSL if(S( (data.url || '').toLowerCase() ).startsWith("https") == true) { // debugging payload.debug('enabled', 'Skipping enabled as HTTPS is done'); // done return fn(null); } // parse the url var uri = url.parse(data.url); // add the vunerable rule payload.addRule({ type: 'warning', key: 'enabled', message: 'HTTPS is not enabled' }, { message: '$ does not have HTTPS enabled', identifiers: [ uri.hostname ] }); // done ! fn(null); };