Enable unsafe SSL\TLS renegotiation via cmd

[Lia]

Hi there,

Can I know how to enable Enable unsafe SSL\TLS renegotiation via cmd? 

How to set it using the "-config" parameter?

Thank you

[Simon Bennetts]

Hi Lia,

We have a FAQ which covers this :)

https://www.zaproxy.org/faq/how-do-you-find-out-what-key-to-use-to-set-a-config-value-on-the-command-line/

Cheers,

Simon

[Lia]

Hi Simon,

Yes, I actually referenced to that FAQ but I can't seem to find the SSL\TLS renegotiation in the config.xml.

I only see this under the connection:

<connection version="3">
            <defaultUserAgent>Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.0.0 Safari/537.36</defaultUserAgent>
            <timeoutInSecs>180</timeoutInSecs>
            <useGlobalHttpState>false</useGlobalHttpState>
            <dnsTtlSuccessfulQueries>30</dnsTtlSuccessfulQueries>
            <httpProxy>
                <enabled>false</enabled>
                <authEnabled>false</authEnabled>
                <storePass>true</storePass>
                <password/>
            </httpProxy>
            <socksProxy>
                <enabled>false</enabled>
            </socksProxy>
            <tlsProtocols>
                <protocol>TLSv1.2</protocol>
                <protocol>TLSv1.3</protocol>
            </tlsProtocols>
        </connection>

Please share how to enable it via command line.
Thank you.

[thc...@gmail.com]

Did you enable the option?

Best regards.

[Lia]

Hi there,

Yup, I tried enabling the option in GUI and it appeared!

Thanks guys.