2022-05-20 10:48:49 +00:00
|
|
|
id: self-signed-ssl
|
|
|
|
|
|
|
|
|
|
info:
|
|
|
|
|
name: Self Signed SSL Certificate
|
|
|
|
|
author: righettod,pdteam
|
|
|
|
|
severity: low
|
2022-12-09 06:48:20 +00:00
|
|
|
description: |
|
2022-12-09 06:54:23 +00:00
|
|
|
self-signed certificates are public key certificates that are not issued by a certificate authority. These self-signed
|
2022-12-09 06:48:20 +00:00
|
|
|
certificates are easy to make and do not cost money. However, they do not provide any trust value.
|
|
|
|
|
remediation: |
|
2022-12-09 06:54:23 +00:00
|
|
|
Purchase or generate a proper SSL certificate for this service.
|
2023-10-14 11:27:55 +00:00
|
|
|
reference:
|
|
|
|
|
- https://www.rapid7.com/db/vulnerabilities/ssl-self-signed-certificate/
|
2023-04-28 08:11:21 +00:00
|
|
|
metadata:
|
|
|
|
|
max-request: 1
|
2023-12-07 21:57:41 +00:00
|
|
|
tags: ssl,tls,self-signed
|
2022-05-20 10:48:49 +00:00
|
|
|
ssl:
|
|
|
|
|
- address: "{{Host}}:{{Port}}"
|
|
|
|
|
matchers:
|
|
|
|
|
- type: dsl
|
|
|
|
|
dsl:
|
2022-12-09 06:48:20 +00:00
|
|
|
- "self_signed == true"
|
2023-12-08 07:58:29 +00:00
|
|
|
# digest: 4a0a00473045022100a7e6f9c90cba4da3b39c6f2906e069a11a21d79bd4c42004d855c11f2b900a730220151cf8b928c343e939a154c764fda631f2cae19c8c6e8569f0b1ba2b78a8de3d:922c64590222798bb761d5b6d8e72950
|
