Go to file
Thomas Patzke cb78121b3f Added os import
Fixes bug #6
2017-06-29 23:35:20 +02:00
screenshots Added screenshots 2016-03-08 15:31:29 +01:00
static Update style.css 2017-04-06 11:37:11 +02:00
templates Removed subresource integrity attributes because of issues. 2016-03-07 17:46:29 +01:00
testssl.sh@55713e4929 update testssl.sh 2017-04-07 15:09:51 +02:00
.gitmodules First version 2016-03-03 11:00:25 +01:00
LICENSE Initial commit 2016-03-08 13:02:49 +01:00
README.md Added --recursive parameter to clone command line 2017-06-29 23:34:13 +02:00
SSLTestPortal.py Added os import 2017-06-29 23:35:20 +02:00

README.md

Web Front End for testssl.sh

This project is a web interface for testssl.sh. It can be used to offer internal TLS/SSL configuration check portals, whereever the usual public tools are not applicable.

Webfrontend Result

Installation

  1. Clone the testssl.sh-webfrontend repository with its main dependency testssl.sh by invocation of git clone --recursive https://github.com/TKCERT/testssl.sh-webfrontend.git.
  2. Install Python 3 (apt-get install python3) and the Python module Flask by running pip3 install flask.
  3. Install aha (apt-get install aha)
  4. Configure SSLTestPortal.py, especially application.secret_key, in its configuration section and create the required paths (log, result/html and result/json in the default configuration).
  5. Run SSLTestPortal.py or deploy it as WSGI script.

NGINX Reverse Proxy

If you would like to run behind a NGINX Reverse Proxy simply add this to your configuration file in sites-enabled. If you want to add security to it look at nginx module basic_auth.

 location /testssl/ {
      proxy_pass http://127.0.0.1:5000/;
      gzip_types text/plain application/javascript;
      proxy_http_version 1.1;
      proxy_set_header Upgrade $http_upgrade;
      proxy_set_header Connection "upgrade";
      proxy_connect_timeout 200;  # you might need to increase these values depending on your server hardware. 
      proxy_send_timeout 200;     # you might need to increase these values depending on your server hardware. 
      proxy_read_timeout 200;     # you might need to increase these values depending on your server hardware. 
      send_timeout 200;           # you might need to increase these values depending on your server hardware. 
 }

You still have to autostart the script on boot. This can be done manually in a screen.

Docker

Markus Kraus (@vMarkus_K) created a Docker Image.