sslcertificate

package
v0.91.1 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Aug 9, 2023 License: MIT Imports: 6 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

View Source
var CheckRemoveExpiredCertificates = rules.Register(
	scan.Rule{
		AVDID:      "AVD-NIF-0006",
		Provider:   providers.NifcloudProvider,
		Service:    "ssl-certificate",
		ShortCode:  "remove-expired-certificates",
		Summary:    "Delete expired SSL certificates",
		Impact:     "Risk of misconfiguration and damage to credibility",
		Resolution: "Remove expired certificates",
		Explanation: `
Removing expired SSL/TLS certificates eliminates the risk that an invalid certificate will be
deployed accidentally to a resource such as NIFCLOUD Load Balancer(L4LB), which candamage the 
credibility of the application/website behind the L4LB. As a best practice, it is
recommended to delete expired certificates.
			`,
		Links: []string{
			"https://pfs.nifcloud.com/help/ssl/del.htm",
		},
		Severity: severity.Low,
	},
	func(s *state.State) (results scan.Results) {
		for _, certificate := range s.Nifcloud.SSLCertificate.ServerCertificates {
			if certificate.Expiration.Before(time.Now()) {
				results.Add("Certificate has expired.", &certificate)
			} else {
				results.AddPassed(&certificate)
			}
		}
		return
	},
)

Functions

This section is empty.

Types

This section is empty.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL