SSLv3 is not secure and should be avoided

Docs > Datadog Security > Code Security > Static Code Analysis (SAST) > SAST ルール > SSLv3 is not secure and should be avoided

このページは日本語には対応しておりません。随時翻訳に取り組んでいます。
翻訳に関してご質問やご意見ございましたら、お気軽にご連絡ください。

Metadata

ID: go-security/ssl-v3-insecure

Language: Go

Severity: Warning

Category: Security

CWE: 327

Related CWEs:

Description

Do not use SSLv3 as it is now broken. See this issue for more information.

Non-Compliant Code Examples

func test() {
    	client := &http.Client{
		Transport: &http.Transport{
			TLSClientConfig: &tls.Config{
				MinVersion:         tls.VersionSSL30,
			},
		},
	}
}

Compliant Code Examples

func test() {
    // Safe: using TLS 1.2 minimum version
    client := &http.Client{
        Transport: &http.Transport{
            TLSClientConfig: &tls.Config{
                MinVersion: tls.VersionTLS12,
            },
        },
    }
}

SSLv3 is not secure and should be avoided

Metadata

Description

Non-Compliant Code Examples

Compliant Code Examples

How can I help you today?