Re: TLS scan results for February 2015
On 2015-03-13 08:29, Hubert Kario wrote: I find the reports on TLS support quite interesting, but also it is hard to visualize the overall trends from month to month. I wonder if you had considered producing graphs showing the progression for each reported statistic across your reports ? It might make it easier to see at a glance how things are changing over time. the project is now mainly in maintenance mode (partially because Julien - upstream - is rather busy lately). That's correct, and I'm sorry about that... I'm working with a student contributor on a TLS Observatory, currently in beta, at http://tls.opsec.allizom.org (visitor/n0ts0s3cr3t). Certificates analysis is mostly done, and cipherscan integration is next. That will take care of the graphing/trending part, but also add support for event workers to trigger tasks when specific certs/ciphers are found. We want to use that to monitor fraudulent certs and bad ciphers on Mozilla's domains. Hubert: if you're planning on rewriting cipherscan, let's talk, I think we can merge ideas and code. - Julien -- security mailing list security@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/security
Re: TLS scan results for February 2015
On Friday 13 March 2015 11:57:14 Daniel P. Berrange wrote: On Fri, Mar 13, 2015 at 11:51:53AM +0100, Hubert Kario wrote: Sorry for being a bit late with the scan results. The bad news that there have been few changes, the bad news is that there have been few changes :) more detailed analysis on my blog: https://securitypitfalls.wordpress.com/2015/03/13/february-2015-scan-resul ts/ SSL/TLS survey of 478847 websites from Alexa's top 1 million Stats only from connections that did provide valid certificates (or anonymous DH from servers that do also have valid certificate installed) [snip big tables of data] I find the reports on TLS support quite interesting, but also it is hard to visualize the overall trends from month to month. I wonder if you had considered producing graphs showing the progression for each reported statistic across your reports ? It might make it easier to see at a glance how things are changing over time. the project is now mainly in maintenance mode (partially because Julien - upstream - is rather busy lately). I don't actively work on new features or bugs. I have a big rewrite planned, but for that I need to finish other stuff first. That being said, I'm open to pull requests[1] and discussing how to best generate them. So if the graph generation is automated in large part then I can promise that I would include them in the blog posts. 1 - https://github.com/tomato42/cipherscan/tree/extra-2 -- Regards, Hubert Kario signature.asc Description: This is a digitally signed message part. -- security mailing list security@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/security