From a8f2623efffbef501f82835e1760ecea23bd5c79 Mon Sep 17 00:00:00 2001
From: surtur <a_mirre@utb.cz>
Date: Fri, 18 Aug 2023 17:24:11 +0200
Subject: [PATCH] tex: describe the ssl-labs pic

---
 tex/part-practical.tex | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/tex/part-practical.tex b/tex/part-practical.tex
index 0a9c853..c551637 100644
--- a/tex/part-practical.tex
+++ b/tex/part-practical.tex
@@ -1301,9 +1301,6 @@ gyroscope=(), magnetometer=(), fullscreen=(self), payment=()} declares that the
 application is, for instance, never going to request access to payment
 information, user microphone or camera devices, or geolocation.
 
-
-The results of scanning the deployed application using Quallys' \textit{SSL
-Labs} scanner can be seen in the picture~\ref{fig:ssllabs}.
 \texttt{gobuster} was used in fuzzing mode to aid in uncovering potential
 application misconfigurations. The wordlists used include:
 
@@ -1316,7 +1313,13 @@ application misconfigurations. The wordlists used include:
 The logs of the fuzzing operations are enclosed as
 Appendix~\ref{appendix:gobusterFuzzingLogs}.
 
-\obr{Quallys SSL Labs}{fig:ssllabs}{.89}{graphics/screen-sslLabs}
+The results of scanning the deployed application using Quallys' \textit{SSL
+Labs} scanner can be seen in the picture~\ref{fig:ssllabs}, confirming that
+HSTS is deployed (including for the subdomains), the server supports TLS 1.3,
+the DNS Certificate Authority Authorisation (CAA) has been configured for the
+domain, with the overall grade being A+.
+
+\obr{Quallys SSL Labs}{fig:ssllabs}{.70}{graphics/screen-sslLabs}