TLS: Check TLS version
Closed this issue · 3 comments
steffenfritz commented
Is your feature request related to a problem? Please describe.
mxcheck should check the TLS version and mark v1.2 as yellow and v1.3+ as green
darealdemayo commented
if you want traffic light system, may I suggest
- red for unencrypted
- yellow for STARTTLS and TLS <1.2
- green for >=1.2
also, if multiple versions are available, warnings for weak versions should still be shown.
also, really great project, thanks for doing this!
steffenfritz commented
Working on this in in branch tlsversioncheck. The checks works on smtpd 25/tcp and submissions 587/tcp and 465/tcp, based on the results of the port scan.
steffenfritz commented
A check is implemented for the highest version of TLS, for TLS used with smtps and STARTTLS seperately.