hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 11:15:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

Update python/ql/src/Security/CWE-327/InsecureDefaultProtocol.qhelp

Browse Source 
Co-authored-by: Felicity Chapman <felicitymay@github.com>
This commit is contained in:
yoff
2021-03-09 13:20:19 +01:00
committed by GitHub
parent d5b304ce75
commit b6257edc9e
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
python/ql/src/Security/CWE-327/InsecureDefaultProtocol.qhelp
View File

@@ -17,7 +17,7 @@
and TLS 1.0 and 1.1 are known to be vulnerable to attacks. Using TLS 1.2 or
above is strongly recommended. If no explicit
<code>ssl_version</code> is specified, the default
<code>PROTOCOL_TLS</code> is chosen. This protocol is insecure in that it
<code>PROTOCOL_TLS</code> is chosen. This protocol is insecure because it
allows TLS 1.0 and TLS 1.1 and so should not be used.
</p>