Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

security.txt redirect to domain with TLS issues (expire / name / CA) #1562

Open
bwbroersma opened this issue Nov 29, 2024 · 0 comments
Open

security.txt redirect to domain with TLS issues (expire / name / CA) #1562

bwbroersma opened this issue Nov 29, 2024 · 0 comments
Assignees
@mxsasha
Labels
bug Unexpected or unwanted behaviour of current implementations
Milestone
backlog

Comments

@bwbroersma
Copy link
Collaborator

bwbroersma commented Nov 29, 2024
edited
Loading

In sectxt there is the invalid_cert error, but this is only in _process, and not ported to securitytxt.py.
Currently internet.nl finds it ✅ fine to redirect to another domain with TLS issues, see this sample test which redirects to an expired TLS certificate on IPv6 (which is detected if the redirected domain is tested).
@bwbroersma bwbroersma added the bug Unexpected or unwanted behaviour of current implementations label Nov 29, 2024
@bwbroersma bwbroersma added this to the backlog milestone Nov 29, 2024
@bwbroersma bwbroersma mentioned this issue Nov 29, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@mxsasha mxsasha

Labels
bug Unexpected or unwanted behaviour of current implementations
Milestone
backlog
Development

No branches or pull requests
2 participants
@mxsasha @bwbroersma