InCommon Technical Discussions

[Rhys Smith <>]

Not yet. Have built the backend stuff that scans all the endpoints in MD 
(does ssllabs testing, nmaps the cipher suites and tls versions supported, 
guesses at the software by the naming of the path of the endpoints, etc)… but 
haven’t yet built anything that displays it. At the moment, extracting data 
is me running an SQL query.

Will be making something more frontend start of next year when i get time.

Having said that, not 100% sure about making the results of the SSLlabs 
scanning publicly (and especially trivially)! available, purely for security 
reasons. Don’t want it to be too easy to find the best targets…

Rhys.



> On 9 Nov 2017, at 11:55, Alan Buxey 
> <>
>  wrote:
> 
>> Just so happens I’ve been doing this in bulk on all endpoint hosts in UKf 
>> & edugain MD for about 6 months or so now (with Qualys approval).
> 
> ..and I was about to say 'I'm sure someone was already doing this' . :)
> 
> is the result/report public anywhere . (ideally with a trivial API
> query so we can trivially check entities and why users are unlikely to
> be completing SAML process) :)
> 
> alan
>

Attachment: smime.p7s
Description: S/MIME cryptographic signature