Description

Exploratory testing of various applications and libraries. This one is almost entirely on you ;). If you have deeper technical insight into some particular area that might be influenced by crypto-policies, go and test!

How to test

Possible areas / inspiration + feel free to ask on IRC

• more thorough investigation of already tested scenarios
• specific software using TLS/SSL (vnc apps, cups server, rsyslog, mail software, ...)
  • is it respecting crypto-policies, e.g.

    server example:
    update-crypto-policies --set FUTURE
    <restart service>
    openssl s_client -tls1 -connect <HOST>:<PORT>
    

• software using other backends, e.g.
  • OpenJDK
  • Libkrb5
  • BIND
• ...

Expected Results

• A lot of debugging, questions and bugs.