mirror/docker-mailserver.docker-mailserver
1
0
Fork 0
mirror of https://github.com/docker-mailserver/docker-mailserver.git synced 2025-07-28 22:55:35 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

test dhparams ONE_DIR both cases

Browse source
This commit is contained in:
youtous 2020-04-26 21:36:03 +02:00
parent 03b8f87ffc
commit 4d031f73e3
No known key found for this signature in database
GPG key ID: 592173AE8CD254A5
5 changed files with 130 additions and 27 deletions
Download patch file Download diff file Expand all files Collapse all files

17
test/tests.bats
View file

@ -667,23 +667,6 @@ EOF
assert_success
}
@test "checking ssl: checking dhe params are sufficient" {
# reference used: (22/04/2020) https://english.ncsc.nl/publications/publications/2019/juni/01/it-security-guidelines-for-transport-layer-security-tls
# check ffdhe params are inchanged
repo_checksum=$(sha512sum "$(pwd)/target/shared/ffdhe4096.pem" | awk '{print $1}')
mozilla_checksum=$(curl https://ssl-config.mozilla.org/ffdhe4096.txt -s | sha512sum | awk '{print $1}')
assert_equal "$repo_checksum" "$mozilla_checksum"
run echo "$repo_checksum"
refute_output '' # checksum must not be empty
# by default, ffdhe4096 should be used
docker_dovecot_checksum=$(docker exec mail sha512sum /etc/dovecot/dh.pem | awk '{print $1}')
docker_postfix_checksum=$(docker exec mail sha512sum /etc/postfix/dhparams.pem | awk '{print $1}')
assert_equal "$docker_dovecot_checksum" "$repo_checksum"
assert_equal "$docker_postfix_checksum" "$repo_checksum"
}
#
# postsrsd
#