jab2870/Dotfiles
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

BIN: analyse-headers: improve expect-ct description

Browse source
This commit is contained in:
Jonathan Hodgson 2020-12-11 15:38:28 +00:00
parent b49d000408
commit 909a6e5e3c
1 changed files with 5 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

6
bin/.bin/webtest/analyse-headers
View file

@ -331,7 +331,11 @@ test_expect-ct(){
that the browser check that any certificate for that site appears in public \ that the browser check that any certificate for that site appears in public \
CT logs. CT logs.
Initially, set the header without the enforce option but with report in order \ Initially, set the header without the enforce option but with report in order \
to check for potential breakages\n\n" to check for potential breakages.
The Expect-CT will likely become obsolete in June 2021. Since May 2018 new \
certificates are expected to support SCTs by default. Certificates before \
March 2018 were allowed to have a lifetime of 39 months, those will all be \
expired in June 2021.\n\n"
return 2 return 2
elif ! echo "$value" | grep -q "enforce"; then elif ! echo "$value" | grep -q "enforce"; then
echo "Expect-CT" | drawInBox echo "Expect-CT" | drawInBox