diff options
| author | Michael Boelen <michael.boelen@cisofy.com> | 2019-07-08 16:08:56 +0300 |
|---|---|---|
| committer | Michael Boelen <michael.boelen@cisofy.com> | 2019-07-08 16:08:56 +0300 |
| commit | 2c17c14c3b8235c906e3435369b278e95f09b1ad (patch) | |
| tree | 6132af484ac9ee810c39545cc3885eb5b5ac5eaa /default.prf | |
| parent | 1854e51e7e116c2fe3322ed53bf38e6ce27787e0 (diff) | |
New profile option to ignore specified certificate directories
Diffstat (limited to 'default.prf')
| -rw-r--r-- | default.prf | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/default.prf b/default.prf index 98f3e20d..befd40d0 100644 --- a/default.prf +++ b/default.prf @@ -92,8 +92,9 @@ skip-plugins=no # Skip Lynis upgrade availability test (default: no) #skip-upgrade-test=yes -# Locations where to search for SSL certificates +# Locations where to search for SSL certificates (separate paths with a colon) ssl-certificate-paths=/etc/apache2:/etc/dovecot:/etc/httpd:/etc/letsencrypt:/etc/pki:/etc/postfix:/etc/ssl:/opt/psa/var/certificates:/usr/local/psa/var/certificates:/usr/local/share/ca-certificates:/var/www:/srv/www +ssl-certificate-paths-to-ignore=/etc/letsencrypt/archive: # Scan type - how deep the audit should be (light, normal or full) test-scan-mode=full |