Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Option to ignore SSL errors from analyzers #228

Closed
geekscrapy opened this issue Apr 12, 2018 · 6 comments
Closed

Option to ignore SSL errors from analyzers #228

geekscrapy opened this issue Apr 12, 2018 · 6 comments
Labels
category:enhancement Issue is related to an existing feature to improve scope:analyzer Issue is analyzer related scope:question status:in progress
Milestone
2.2.0

Comments

@geekscrapy
Copy link

Some internally hosted workers for analyzers (e.g. Cuckoo) may not have a valid certificate. Can an option be created to disable SSL verification on certain analyzers?
@nadouani
Copy link
Contributor

This could be made on the analyzers, one by one but needs development.

Please list the analyzers you want see with support of an option to disable SSL verification

@geekscrapy
Copy link
Author

geekscrapy commented Apr 12, 2018
edited
Loading

Fair enough - I guess the self-hosted workers would be a priority. But CuckooSandbox & MISP would be a priority for us.

But essentially all may need this if Cortex has to go through a corporate proxy?

@3c7
Copy link
Contributor

3c7 commented Apr 23, 2018

I think you can add the CA or issuer cert to /etc/ssl/certs, that should work, too.

@saadkadhi
Copy link
Contributor

@geekscrapy Is the solution provided by @3c7 satisfactory? Can we go ahead and close this issue?

@saadkadhi saadkadhi added category:enhancement Issue is related to an existing feature to improve scope:analyzer Issue is analyzer related labels Jul 12, 2018
@geekscrapy
Copy link
Author

I haven't tried but I presume it wouldn't work for Dockerised analyzers and would require modification of the cortex docker file (appreciate this isn't hard to do)?

I think it would be best to have a dedicated SSL setting contained in the general analyzer settings?

@jeromeleonard jeromeleonard added this to the 2.2.0 milestone Jun 29, 2019
jeromeleonard added a commit that referenced this issue Jun 29, 2019
@jeromeleonard
#228 add verify option for ssl requests
f6d2b4f
@jeromeleonard
Copy link
Contributor

this shoud be fixed in develop branch, please test it and get back to us. I added a verifyssl option in Cuckoo analyzers. Version has been bumped to 1.2

@redwolfey redwolfey mentioned this issue Feb 7, 2020
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
category:enhancement Issue is related to an existing feature to improve scope:analyzer Issue is analyzer related scope:question status:in progress
Projects
None yet
Milestone
2.2.0
Development

No branches or pull requests
5 participants
@nadouani @3c7 @saadkadhi @jeromeleonard @geekscrapy