diff options
| author | Luca Deri <deri@ntop.org> | 2022-02-03 12:19:01 +0100 |
|---|---|---|
| committer | Luca Deri <deri@ntop.org> | 2022-02-03 12:19:01 +0100 |
| commit | ae09e7fb1483f623a4a2c3e181e7cf98b7439780 (patch) | |
| tree | 0c8041febf6ac6a1beeaddbe5021c0aab1f25c7d /doc/flow_risks.rst | |
| parent | a96d7eb180db4074e46b0e56ea79e1417fe771f5 (diff) | |
Improved risks description
Diffstat (limited to 'doc/flow_risks.rst')
| -rw-r--r-- | doc/flow_risks.rst | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/doc/flow_risks.rst b/doc/flow_risks.rst index 7e2ebb528..61ad34d93 100644 --- a/doc/flow_risks.rst +++ b/doc/flow_risks.rst @@ -195,13 +195,13 @@ This risk is set when the `ALPN <https://en.wikipedia.org/wiki/Application-Layer NDPI_TLS_CERT_VALIDITY_TOO_LONG =============================== -From 01/09/2020 TLS certificates lifespan is limited to 13 months. This risk is triggered for certificates not respecting this directive. +From 01/09/2020 TLS certificates lifespan is limited to `13 months <https://www.appviewx.com/blogs/tls-certificate-lifespans-now-capped-at-13-months/>`_. This risk is triggered for certificates not respecting this directive. .. _Risk 033: NDPI_TLS_SUSPICIOUS_EXTENSION ============================= -This risk is triggered when the domain name (SNI extension) is not printable and thus it is a problem. +This risk is triggered when the domain name (SNI extension) is not printable and thus it is a problem. In TLS extensions can be dynamically specified by the client in the hello packet. .. _Risk 034: @@ -246,7 +246,7 @@ Additionally, some TLS protocol fields are checked for printable characters as w NDPI_POSSIBLE_EXPLOIT ===================== -The risk is set whenever a possible exploit (e.g. `Log4J/Log4Shell <https://en.wikipedia.org/wiki/Log4Shell>`) is detected. +The risk is set whenever a possible exploit (e.g. `Log4J/Log4Shell <https://en.wikipedia.org/wiki/Log4Shell>`_) is detected. .. _Risk 041: @@ -258,4 +258,4 @@ The risk is set whenever a TLS certificate is close to the expiration date. NDPI_PUNYCODE_IDN =================================== -The risk is set whenever a domain name is specified in IDN format as they are sometimes used in `IDN homograph attacks <https://https://en.wikipedia.org/wiki/IDN_homograph_attack>`. +The risk is set whenever a domain name is specified in IDN format as they are sometimes used in `IDN homograph attacks <https://https://en.wikipedia.org/wiki/IDN_homograph_attack>`_. |