check_http - support TLS v1.2 (#1338)

Jason Wilkinson notifications at
Thu Aug 27 20:00:31 CEST 2015

Some QSAs are starting to vail PCI scans when TLSv1 is enabled. They've
already disallowed SSLv2 and SSLv3. That means that there are no checks that
would be available via SSL with this command unless it's extended to support
TLSv1.1 and TLSv1.2. This needs to be updated for this plugin to be useful
in any environment that has PCI implications. 

Reply to this email on GitHub:
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the Devel mailing list