-
Notifications
You must be signed in to change notification settings - Fork 27
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Remove faulty cryptcheck #35
Conversation
Please see my reply about SSLLabs: https://github.com/dalf/searx-stats2/issues/10#issuecomment-572003677
Please checkout the help section to understand why it gives an E rank: https://cryptcheck.fr/help |
( cryptcheck command line shows all the details but not the html page. ) |
@unixfox I mean, what I used to follow is the intermediate compatibility of Mozilla TLS guidelines. According to his Twitter bio, Ivan Ristic is:
Frankly, SSL Labs is and has been trustworthy. I can see at the time the As my certificate has been generated by Let's Encrypt, I migrated for my @dalf Thank you a lot. I was wondering why I have the "No HSTS" issue as the useful help section did not indicate the "E" rank with the "No HSTS" issue. I have therefore fixed the I will look now why my Thank you a lot to both of you! |
Cryptcheck does not support TLS 1.3.
It can give E grades for TLS to searx instances that are absolutely secure.
SSLLabs is the recommended solution: https://www.ssllabs.com/ssltest/
A lot of open source sofwares run around it such as: https://github.com/ssllabs/ssllabs-scan