mirror of
https://github.com/drwetter/testssl.sh.git
synced 2025-01-07 09:10:57 +01:00
Merge pull request #1986 from DimitriPapadopoulos/3.0
Typos found by codespell
This commit is contained in:
commit
24ba9e6efa
13
.github/workflows/codespell.yml
vendored
Normal file
13
.github/workflows/codespell.yml
vendored
Normal file
@ -0,0 +1,13 @@
|
|||||||
|
---
|
||||||
|
name: Codespell
|
||||||
|
on: [push, pull_request]
|
||||||
|
jobs:
|
||||||
|
codespell:
|
||||||
|
name: Check for spelling errors
|
||||||
|
runs-on: ubuntu-latest
|
||||||
|
steps:
|
||||||
|
- uses: actions/checkout@v2
|
||||||
|
- uses: codespell-project/actions-codespell@master
|
||||||
|
with:
|
||||||
|
skip: ca_hashes.txt,tls_data.txt,*.pem,OPENSSL-LICENSE.txt
|
||||||
|
ignore_words_list: borken,gost,ciph,ba,bloc,isnt,chello,fo,alle,nmake
|
26
CHANGELOG.md
26
CHANGELOG.md
@ -16,7 +16,7 @@
|
|||||||
* Socket timeouts (``--connect-timeout``)
|
* Socket timeouts (``--connect-timeout``)
|
||||||
* IDN/IDN2 servername/URI + emoji support, supposed libidn/idn2 is installed and DNS resolver is recent) support
|
* IDN/IDN2 servername/URI + emoji support, supposed libidn/idn2 is installed and DNS resolver is recent) support
|
||||||
* Initial support for certificate compression
|
* Initial support for certificate compression
|
||||||
* Better JSON output: renamed IDs and findings shorter/better parsable, also includes certficate
|
* Better JSON output: renamed IDs and findings shorter/better parsable, also includes certificate
|
||||||
* JSON output now valid also for non-responding servers
|
* JSON output now valid also for non-responding servers
|
||||||
* Testing now per default 370 ciphers
|
* Testing now per default 370 ciphers
|
||||||
* Further improving the robustness of TLS sockets (sending and parsing)
|
* Further improving the robustness of TLS sockets (sending and parsing)
|
||||||
@ -61,7 +61,7 @@
|
|||||||
|
|
||||||
* Way better coverage of ciphers as most checks are done via bash sockets where ever possible
|
* Way better coverage of ciphers as most checks are done via bash sockets where ever possible
|
||||||
* Further tests via TLS sockets and improvements (handshake parsing, completeness, robustness)
|
* Further tests via TLS sockets and improvements (handshake parsing, completeness, robustness)
|
||||||
* Testing 359 default ciphers (``testssl.sh -e/-E``) with a mixture of sockets and openssl. Same speed as with openssl only but addtional ciphers such as post-quantum ciphers, new CHAHA20/POLY1305, CamelliaGCM etc.
|
* Testing 359 default ciphers (``testssl.sh -e/-E``) with a mixture of sockets and openssl. Same speed as with openssl only but additional ciphers such as post-quantum ciphers, new CHAHA20/POLY1305, CamelliaGCM etc.
|
||||||
* TLS 1.2 protocol check via sockets in production
|
* TLS 1.2 protocol check via sockets in production
|
||||||
* Finding more TLS extensions via sockets
|
* Finding more TLS extensions via sockets
|
||||||
* TLS Supported Groups Registry (RFC 7919), key shares extension
|
* TLS Supported Groups Registry (RFC 7919), key shares extension
|
||||||
@ -105,7 +105,7 @@
|
|||||||
* Even more compatibility improvements for FreeBSD, NetBSD, Gentoo, RH-ish, F5 and Cisco systems
|
* Even more compatibility improvements for FreeBSD, NetBSD, Gentoo, RH-ish, F5 and Cisco systems
|
||||||
* Considerable speed improvements for each cipher runs (-e/-E)
|
* Considerable speed improvements for each cipher runs (-e/-E)
|
||||||
* More robust SSLv2 + TLS socket interface
|
* More robust SSLv2 + TLS socket interface
|
||||||
* seperate check for curves
|
* separate check for curves
|
||||||
* OpenSSL 1.1.0 compliant
|
* OpenSSL 1.1.0 compliant
|
||||||
* check for DROWN
|
* check for DROWN
|
||||||
* Whole number of bugs squashed
|
* Whole number of bugs squashed
|
||||||
@ -124,7 +124,7 @@
|
|||||||
* (HTTP) proxy support! Also with sockets -- thx @jnewbigin
|
* (HTTP) proxy support! Also with sockets -- thx @jnewbigin
|
||||||
* Extended validation certificate detection
|
* Extended validation certificate detection
|
||||||
* Run in default mode through all ciphers at the end of a default run
|
* Run in default mode through all ciphers at the end of a default run
|
||||||
* will test multiple IP adresses of one supplied server name in one shot, --ip= restricts it accordingly
|
* will test multiple IP addresses of one supplied server name in one shot, --ip= restricts it accordingly
|
||||||
* new mass testing file option --file option where testssl.sh commands are being read from, see https://twitter.com/drwetter/status/627619848344989696
|
* new mass testing file option --file option where testssl.sh commands are being read from, see https://twitter.com/drwetter/status/627619848344989696
|
||||||
* TLS time and HTTP time stamps
|
* TLS time and HTTP time stamps
|
||||||
* TLS time displayed also for STARTTLS protocols
|
* TLS time displayed also for STARTTLS protocols
|
||||||
@ -193,10 +193,10 @@ Full changelog @ https://github.com/drwetter/testssl.sh/commits/2.2/testssl.sh
|
|||||||
- IPv6 display fix
|
- IPv6 display fix
|
||||||
|
|
||||||
1.111
|
1.111
|
||||||
- NEW: tested unter FreeBSD (works with exception of xxd in CCS)
|
- NEW: tested under FreeBSD (works with exception of xxd in CCS)
|
||||||
- getent now works under Linux and FreeBSD
|
- getent now works under Linux and FreeBSD
|
||||||
- sed -i in hsts sacrificed for compatibility
|
- sed -i in hsts sacrificed for compatibility
|
||||||
- reomved query for IP for finishing banner, is now called once in parse_hn_port
|
- removed query for IP for finishing banner, is now called once in parse_hn_port
|
||||||
- GOST warning after banner
|
- GOST warning after banner
|
||||||
- empty build date is not displayed anymore
|
- empty build date is not displayed anymore
|
||||||
- long build date strings minimized
|
- long build date strings minimized
|
||||||
@ -286,7 +286,7 @@ Full changelog @ https://github.com/drwetter/testssl.sh/commits/2.2/testssl.sh
|
|||||||
1.91
|
1.91
|
||||||
- replaced most lcyan to brown (=not really bad but somehow)
|
- replaced most lcyan to brown (=not really bad but somehow)
|
||||||
- empty server string better displayed
|
- empty server string better displayed
|
||||||
- prefered CBC TLS 1.2 cipher is now brown (lucky13)
|
- preferred CBC TLS 1.2 cipher is now brown (lucky13)
|
||||||
|
|
||||||
1.90
|
1.90
|
||||||
- fix for netweaver banner (server is lowercase)
|
- fix for netweaver banner (server is lowercase)
|
||||||
@ -295,7 +295,7 @@ Full changelog @ https://github.com/drwetter/testssl.sh/commits/2.2/testssl.sh
|
|||||||
|
|
||||||
1.89
|
1.89
|
||||||
- reordered! : protocols + cipher come first
|
- reordered! : protocols + cipher come first
|
||||||
- colorized prefered server preference (e.g. CBC+RC4 is light red now, TLSv1.2 green)
|
- colorized preferred server preference (e.g. CBC+RC4 is light red now, TLSv1.2 green)
|
||||||
- SSLv3 is now light cyan
|
- SSLv3 is now light cyan
|
||||||
- NEW: -P|--preference now in help menu
|
- NEW: -P|--preference now in help menu
|
||||||
- light cyan is more appropriate than red for HSTS
|
- light cyan is more appropriate than red for HSTS
|
||||||
@ -330,10 +330,10 @@ Full changelog @ https://github.com/drwetter/testssl.sh/commits/2.2/testssl.sh
|
|||||||
- headline of -V / PFS+RC4 ciphers unified
|
- headline of -V / PFS+RC4 ciphers unified
|
||||||
|
|
||||||
1.82
|
1.82
|
||||||
- NEW: output for -V now better (bits seperate, spacing improved)
|
- NEW: output for -V now better (bits separate, spacing improved)
|
||||||
|
|
||||||
1.81
|
1.81
|
||||||
- output for RC4+PFS now better (with headline, bits seperate, spacing improved)
|
- output for RC4+PFS now better (with headline, bits separate, spacing improved)
|
||||||
- both also sorted by encr. strength .. umm ..err bits!
|
- both also sorted by encr. strength .. umm ..err bits!
|
||||||
|
|
||||||
1.80
|
1.80
|
||||||
@ -358,7 +358,7 @@ Full changelog @ https://github.com/drwetter/testssl.sh/commits/2.2/testssl.sh
|
|||||||
- removed legacy code (PROD_REL var)
|
- removed legacy code (PROD_REL var)
|
||||||
|
|
||||||
1.76
|
1.76
|
||||||
- bash was gone!! desaster for Ubuntu, fixed
|
- bash was gone!! disaster for Ubuntu, fixed
|
||||||
- starttls+rc4 check: bottom line was wrong
|
- starttls+rc4 check: bottom line was wrong
|
||||||
- starttls had too much output (certificate) at first a/v check
|
- starttls had too much output (certificate) at first a/v check
|
||||||
|
|
||||||
@ -454,7 +454,7 @@ Full changelog @ https://github.com/drwetter/testssl.sh/commits/2.2/testssl.sh
|
|||||||
* NOPARANOID flag tells whether medium grade ciphers are ok. NOW they are (=<1.17 was paranoid)
|
* NOPARANOID flag tells whether medium grade ciphers are ok. NOW they are (=<1.17 was paranoid)
|
||||||
|
|
||||||
1.17
|
1.17
|
||||||
* SSL tests now for renegotiation vulnerabilty!
|
* SSL tests now for renegotiation vulnerability!
|
||||||
* version detection of testssl.sh
|
* version detection of testssl.sh
|
||||||
* program has a banner
|
* program has a banner
|
||||||
* fixed bug leading to a file named "1"
|
* fixed bug leading to a file named "1"
|
||||||
@ -480,7 +480,7 @@ Full changelog @ https://github.com/drwetter/testssl.sh/commits/2.2/testssl.sh
|
|||||||
* as a courtesy I am providing 64+32 Linux binaries for testing 56 Bit ciphers
|
* as a courtesy I am providing 64+32 Linux binaries for testing 56 Bit ciphers
|
||||||
|
|
||||||
1.11
|
1.11
|
||||||
* Hint for howto enable 56 Bit ciphers fpr testing
|
* Hint for howto enable 56 Bit ciphers for testing
|
||||||
* possible to specify where openssl is (hardcoded, $ENV, last resort: auto)
|
* possible to specify where openssl is (hardcoded, $ENV, last resort: auto)
|
||||||
* warns if netcat is not there
|
* warns if netcat is not there
|
||||||
|
|
||||||
|
@ -13,7 +13,7 @@ cryptographic flaws.
|
|||||||
* Clear output: you can tell easily whether anything is good or bad.
|
* Clear output: you can tell easily whether anything is good or bad.
|
||||||
* Machine readable output.
|
* Machine readable output.
|
||||||
* No installation needed: Linux, OSX/Darwin, FreeBSD, NetBSD, MSYS2/Cygwin, WSL work out of the box. Only OpenBSD needs bash. No need to install or to configure something. No gems, CPAN, pip or the like.
|
* No installation needed: Linux, OSX/Darwin, FreeBSD, NetBSD, MSYS2/Cygwin, WSL work out of the box. Only OpenBSD needs bash. No need to install or to configure something. No gems, CPAN, pip or the like.
|
||||||
* A Dockerfile is provided, there's also an offical container @ dockerhub.
|
* A Dockerfile is provided, there's also an official container @ dockerhub.
|
||||||
* Flexibility: You can test any SSL/TLS enabled and STARTTLS service, not only web servers at port 443.
|
* Flexibility: You can test any SSL/TLS enabled and STARTTLS service, not only web servers at port 443.
|
||||||
* Toolbox: Several command line options help you to run *your* test and configure *your* output.
|
* Toolbox: Several command line options help you to run *your* test and configure *your* output.
|
||||||
* Reliability: features are tested thoroughly.
|
* Reliability: features are tested thoroughly.
|
||||||
@ -49,7 +49,7 @@ You can download testssl.sh by cloning this git repository:
|
|||||||
|
|
||||||
git clone --depth 1 https://github.com/drwetter/testssl.sh.git --branch 3.0
|
git clone --depth 1 https://github.com/drwetter/testssl.sh.git --branch 3.0
|
||||||
|
|
||||||
For the stable version help yourself by downloading the [ZIP](https://codeload.github.com/drwetter/testssl.sh/zip/3.0.5) or the lastest testssl-3.0.X.tar.gz from [https://testssl.sh](https://testssl.sh/) archive. Just ``cd`` to the directory created (=INSTALLDIR) and run it off there.
|
For the stable version help yourself by downloading the [ZIP](https://codeload.github.com/drwetter/testssl.sh/zip/3.0.5) or the latest testssl-3.0.X.tar.gz from [https://testssl.sh](https://testssl.sh/) archive. Just ``cd`` to the directory created (=INSTALLDIR) and run it off there.
|
||||||
|
|
||||||
#### Docker
|
#### Docker
|
||||||
|
|
||||||
|
@ -122,7 +122,7 @@ Please note that \fBfname\fR has to be in Unix format\. DOS carriage returns won
|
|||||||
\fB\-\-mode <serial|parallel>\fR\. Mass testing to be done serial (default) or parallel (\fB\-\-parallel\fR is shortcut for the latter, \fB\-\-serial\fR is the opposite option)\. Per default mass testing is being run in serial mode, i\.e\. one line after the other is processed and invoked\. The variable \fBMASS_TESTING_MODE\fR can be defined to be either equal \fBserial\fR or \fBparallel\fR\.
|
\fB\-\-mode <serial|parallel>\fR\. Mass testing to be done serial (default) or parallel (\fB\-\-parallel\fR is shortcut for the latter, \fB\-\-serial\fR is the opposite option)\. Per default mass testing is being run in serial mode, i\.e\. one line after the other is processed and invoked\. The variable \fBMASS_TESTING_MODE\fR can be defined to be either equal \fBserial\fR or \fBparallel\fR\.
|
||||||
.
|
.
|
||||||
.P
|
.P
|
||||||
\fB\-\-warnings <batch|off>\fR\. The warnings parameter determines how testssl\.sh will deal with situations where user input normally will be necessary\. There are two options\. \fBbatch\fR doesn\'t wait for a confirming keypress when a client\- or server\-side probem is encountered\. As of 3\.0 it just then terminates the particular scan\. This is automatically chosen for mass testing (\fB\-\-file\fR)\. \fBoff\fR just skips the warning, the confirmation but continues the scan, independent whether it makes sense or not\. Please note that there are conflicts where testssl\.sh will still ask for confirmation which are the ones which otherwise would have a drastic impact on the results\. Almost any other decision will be made in the future as a best guess by testssl\.sh\. The same can be achieved by setting the environment variable \fBWARNINGS\fR\.
|
\fB\-\-warnings <batch|off>\fR\. The warnings parameter determines how testssl\.sh will deal with situations where user input normally will be necessary\. There are two options\. \fBbatch\fR doesn\'t wait for a confirming keypress when a client\- or server\-side problem is encountered\. As of 3\.0 it just then terminates the particular scan\. This is automatically chosen for mass testing (\fB\-\-file\fR)\. \fBoff\fR just skips the warning, the confirmation but continues the scan, independent whether it makes sense or not\. Please note that there are conflicts where testssl\.sh will still ask for confirmation which are the ones which otherwise would have a drastic impact on the results\. Almost any other decision will be made in the future as a best guess by testssl\.sh\. The same can be achieved by setting the environment variable \fBWARNINGS\fR\.
|
||||||
.
|
.
|
||||||
.P
|
.P
|
||||||
\fB\-\-connect\-timeout <seconds>\fR This is useful for socket TCP connections to a node\. If the node does not complete a TCP handshake (e\.g\. because it is down or behind a firewall or there\'s an IDS or a tarpit) testssl\.sh may usually hang for around 2 minutes or even much more\. This parameter instructs testssl\.sh to wait at most \fBseconds\fR for the handshake to complete before giving up\. This option only works if your OS has a timeout binary installed\. CONNECT_TIMEOUT is the corresponding environment variable\.
|
\fB\-\-connect\-timeout <seconds>\fR This is useful for socket TCP connections to a node\. If the node does not complete a TCP handshake (e\.g\. because it is down or behind a firewall or there\'s an IDS or a tarpit) testssl\.sh may usually hang for around 2 minutes or even much more\. This parameter instructs testssl\.sh to wait at most \fBseconds\fR for the handshake to complete before giving up\. This option only works if your OS has a timeout binary installed\. CONNECT_TIMEOUT is the corresponding environment variable\.
|
||||||
@ -335,7 +335,7 @@ Security headers (X\-Frame\-Options, X\-XSS\-Protection, Expect\-CT,\.\.\. , CSP
|
|||||||
\fB\-g, \-\-grease\fR checks several server implementation bugs like tolerance to size limitations and GREASE, see https://www\.ietf\.org/archive/id/draft\-ietf\-tls\-grease\-01\.txt \. This checks doesn\'t run per default\.
|
\fB\-g, \-\-grease\fR checks several server implementation bugs like tolerance to size limitations and GREASE, see https://www\.ietf\.org/archive/id/draft\-ietf\-tls\-grease\-01\.txt \. This checks doesn\'t run per default\.
|
||||||
.
|
.
|
||||||
.SS "VULNERABILITIES"
|
.SS "VULNERABILITIES"
|
||||||
\fB\-U, \-\-vulnerable, \-\-vulnerabilities\fR Just tests all (of the following) vulnerabilities\. The environment variable \fBVULN_THRESHLD\fR determines after which value a separate headline for each vulnerability is being displayed\. Default is \fB1\fR which means if you check for two vulnerabilities, only the general headline for vulnerabilities section is displayed \-\- in addition to the vulnerability and the result\. Otherwise each vulnerability or vulnerability section gets its own headline in addition to the output of the name of the vulnerabilty and test result\. A vulnerability section is comprised of more than one check, e\.g\. the renegotiation vulnerability check has two checks, so has Logjam\.
|
\fB\-U, \-\-vulnerable, \-\-vulnerabilities\fR Just tests all (of the following) vulnerabilities\. The environment variable \fBVULN_THRESHLD\fR determines after which value a separate headline for each vulnerability is being displayed\. Default is \fB1\fR which means if you check for two vulnerabilities, only the general headline for vulnerabilities section is displayed \-\- in addition to the vulnerability and the result\. Otherwise each vulnerability or vulnerability section gets its own headline in addition to the output of the name of the vulnerability and test result\. A vulnerability section is comprised of more than one check, e\.g\. the renegotiation vulnerability check has two checks, so has Logjam\.
|
||||||
.
|
.
|
||||||
.P
|
.P
|
||||||
\fB\-H, \-\-heartbleed\fR Checks for Heartbleed, a memory leakage in openssl\. Unless the server side doesn\'t support the heartbeat extension it is likely that this check runs into a timeout\. The seconds to wait for a reply can be adjusted with \fBHEARTBLEED_MAX_WAITSOCK\fR\. 8 is the default\.
|
\fB\-H, \-\-heartbleed\fR Checks for Heartbleed, a memory leakage in openssl\. Unless the server side doesn\'t support the heartbeat extension it is likely that this check runs into a timeout\. The seconds to wait for a reply can be adjusted with \fBHEARTBLEED_MAX_WAITSOCK\fR\. 8 is the default\.
|
||||||
@ -622,7 +622,7 @@ MAX_SOCKET_FAIL: A number which tells testssl\.sh how often a TCP socket connect
|
|||||||
MAX_OSSL_FAIL: A number which tells testssl\.sh how often an OpenSSL s_client connect may fail before the program gives up and terminates\. The default is 2\. You can increase it to a higher value if you frequently see a message like \fIFatal error: repeated TCP connect problems, giving up\fR\.
|
MAX_OSSL_FAIL: A number which tells testssl\.sh how often an OpenSSL s_client connect may fail before the program gives up and terminates\. The default is 2\. You can increase it to a higher value if you frequently see a message like \fIFatal error: repeated TCP connect problems, giving up\fR\.
|
||||||
.
|
.
|
||||||
.IP "\(bu" 4
|
.IP "\(bu" 4
|
||||||
MAX_HEADER_FAIL: A number which tells testssl\.sh how often a HTTP GET request over OpenSSL may return an empty file before the program gives up and terminates\. The default is 3\. Also here you can incerase the threshold when you spot messages like \fIFatal error: repeated HTTP header connect problems, doesn\'t make sense to continue\fR\.
|
MAX_HEADER_FAIL: A number which tells testssl\.sh how often a HTTP GET request over OpenSSL may return an empty file before the program gives up and terminates\. The default is 3\. Also here you can increase the threshold when you spot messages like \fIFatal error: repeated HTTP header connect problems, doesn\'t make sense to continue\fR\.
|
||||||
.
|
.
|
||||||
.IP "" 0
|
.IP "" 0
|
||||||
.
|
.
|
||||||
|
@ -178,7 +178,7 @@ host.example.com:631
|
|||||||
|
|
||||||
<p><code>--mode <serial|parallel></code>. Mass testing to be done serial (default) or parallel (<code>--parallel</code> is shortcut for the latter, <code>--serial</code> is the opposite option). Per default mass testing is being run in serial mode, i.e. one line after the other is processed and invoked. The variable <code>MASS_TESTING_MODE</code> can be defined to be either equal <code>serial</code> or <code>parallel</code>.</p>
|
<p><code>--mode <serial|parallel></code>. Mass testing to be done serial (default) or parallel (<code>--parallel</code> is shortcut for the latter, <code>--serial</code> is the opposite option). Per default mass testing is being run in serial mode, i.e. one line after the other is processed and invoked. The variable <code>MASS_TESTING_MODE</code> can be defined to be either equal <code>serial</code> or <code>parallel</code>.</p>
|
||||||
|
|
||||||
<p><code>--warnings <batch|off></code>. The warnings parameter determines how testssl.sh will deal with situations where user input normally will be necessary. There are two options. <code>batch</code> doesn't wait for a confirming keypress when a client- or server-side probem is encountered. As of 3.0 it just then terminates the particular scan. This is automatically chosen for mass testing (<code>--file</code>). <code>off</code> just skips the warning, the confirmation but continues the scan, independent whether it makes sense or not. Please note that there are conflicts where testssl.sh will still ask for confirmation which are the ones which otherwise would have a drastic impact on the results. Almost any other decision will be made in the future as a best guess by testssl.sh.
|
<p><code>--warnings <batch|off></code>. The warnings parameter determines how testssl.sh will deal with situations where user input normally will be necessary. There are two options. <code>batch</code> doesn't wait for a confirming keypress when a client- or server-side problem is encountered. As of 3.0 it just then terminates the particular scan. This is automatically chosen for mass testing (<code>--file</code>). <code>off</code> just skips the warning, the confirmation but continues the scan, independent whether it makes sense or not. Please note that there are conflicts where testssl.sh will still ask for confirmation which are the ones which otherwise would have a drastic impact on the results. Almost any other decision will be made in the future as a best guess by testssl.sh.
|
||||||
The same can be achieved by setting the environment variable <code>WARNINGS</code>.</p>
|
The same can be achieved by setting the environment variable <code>WARNINGS</code>.</p>
|
||||||
|
|
||||||
<p><code>--connect-timeout <seconds></code> This is useful for socket TCP connections to a node. If the node does not complete a TCP handshake (e.g. because it is down or behind a firewall or there's an IDS or a tarpit) testssl.sh may usually hang for around 2 minutes or even much more. This parameter instructs testssl.sh to wait at most <code>seconds</code> for the handshake to complete before giving up. This option only works if your OS has a timeout binary installed. CONNECT_TIMEOUT is the corresponding environment variable.</p>
|
<p><code>--connect-timeout <seconds></code> This is useful for socket TCP connections to a node. If the node does not complete a TCP handshake (e.g. because it is down or behind a firewall or there's an IDS or a tarpit) testssl.sh may usually hang for around 2 minutes or even much more. This parameter instructs testssl.sh to wait at most <code>seconds</code> for the handshake to complete before giving up. This option only works if your OS has a timeout binary installed. CONNECT_TIMEOUT is the corresponding environment variable.</p>
|
||||||
@ -231,7 +231,7 @@ ADDITIONAL_CA_FILES is the environment variable for this.</p>
|
|||||||
|
|
||||||
<p><code>-E, --cipher-per-proto</code> is similar to <code>-e, --each-cipher</code>. It checks each of the possible ciphers, here: per protocol. If you want to display each cipher tested you need to add <code>--show-each</code>. The output is sorted by security strength, it lists the encryption bits though.</p>
|
<p><code>-E, --cipher-per-proto</code> is similar to <code>-e, --each-cipher</code>. It checks each of the possible ciphers, here: per protocol. If you want to display each cipher tested you need to add <code>--show-each</code>. The output is sorted by security strength, it lists the encryption bits though.</p>
|
||||||
|
|
||||||
<p><code>-s, --std, --standard</code> tests certain lists of cipher suites / cipher catagories by strength. Those lists are (<code>openssl ciphers $LIST</code>, $LIST from below:)</p>
|
<p><code>-s, --std, --standard</code> tests certain lists of cipher suites / cipher categories by strength. Those lists are (<code>openssl ciphers $LIST</code>, $LIST from below:)</p>
|
||||||
|
|
||||||
<ul>
|
<ul>
|
||||||
<li><code>NULL encryption ciphers</code>: 'NULL:eNULL'</li>
|
<li><code>NULL encryption ciphers</code>: 'NULL:eNULL'</li>
|
||||||
@ -307,7 +307,7 @@ Also for multiple server certificates are being checked for as well as for the c
|
|||||||
|
|
||||||
<h3 id="VULNERABILITIES">VULNERABILITIES</h3>
|
<h3 id="VULNERABILITIES">VULNERABILITIES</h3>
|
||||||
|
|
||||||
<p><code>-U, --vulnerable, --vulnerabilities</code> Just tests all (of the following) vulnerabilities. The environment variable <code>VULN_THRESHLD</code> determines after which value a separate headline for each vulnerability is being displayed. Default is <code>1</code> which means if you check for two vulnerabilities, only the general headline for vulnerabilities section is displayed -- in addition to the vulnerability and the result. Otherwise each vulnerability or vulnerability section gets its own headline in addition to the output of the name of the vulnerabilty and test result. A vulnerability section is comprised of more than one check, e.g. the renegotiation vulnerability check has two checks, so has Logjam.</p>
|
<p><code>-U, --vulnerable, --vulnerabilities</code> Just tests all (of the following) vulnerabilities. The environment variable <code>VULN_THRESHLD</code> determines after which value a separate headline for each vulnerability is being displayed. Default is <code>1</code> which means if you check for two vulnerabilities, only the general headline for vulnerabilities section is displayed -- in addition to the vulnerability and the result. Otherwise each vulnerability or vulnerability section gets its own headline in addition to the output of the name of the vulnerability and test result. A vulnerability section is comprised of more than one check, e.g. the renegotiation vulnerability check has two checks, so has Logjam.</p>
|
||||||
|
|
||||||
<p><code>-H, --heartbleed</code> Checks for Heartbleed, a memory leakage in openssl. Unless the server side doesn't support the heartbeat extension it is likely that this check runs into a timeout. The seconds to wait for a reply can be adjusted with <code>HEARTBLEED_MAX_WAITSOCK</code>. 8 is the default.</p>
|
<p><code>-H, --heartbleed</code> Checks for Heartbleed, a memory leakage in openssl. Unless the server side doesn't support the heartbeat extension it is likely that this check runs into a timeout. The seconds to wait for a reply can be adjusted with <code>HEARTBLEED_MAX_WAITSOCK</code>. 8 is the default.</p>
|
||||||
|
|
||||||
@ -471,7 +471,7 @@ Also for multiple server certificates are being checked for as well as for the c
|
|||||||
<li>CA_BUNDLES_PATH: If you have an own set of CA bundles or you want to point testssl.sh to a specific location of a CA bundle, you can use this variable to set the directory which testssl.sh will use. Please note that it overrides completely the builtin path of testssl.sh which means that you will only test against the bundles you point to. Also you might want to use <code>~/utils/create_ca_hashes.sh</code> to create the hashes for HPKP.</li>
|
<li>CA_BUNDLES_PATH: If you have an own set of CA bundles or you want to point testssl.sh to a specific location of a CA bundle, you can use this variable to set the directory which testssl.sh will use. Please note that it overrides completely the builtin path of testssl.sh which means that you will only test against the bundles you point to. Also you might want to use <code>~/utils/create_ca_hashes.sh</code> to create the hashes for HPKP.</li>
|
||||||
<li>MAX_SOCKET_FAIL: A number which tells testssl.sh how often a TCP socket connection may fail before the program gives up and terminates. The default is 2. You can increase it to a higher value if you frequently see a message like <em>Fatal error: repeated openssl s_client connect problem, doesn't make sense to continue</em>.</li>
|
<li>MAX_SOCKET_FAIL: A number which tells testssl.sh how often a TCP socket connection may fail before the program gives up and terminates. The default is 2. You can increase it to a higher value if you frequently see a message like <em>Fatal error: repeated openssl s_client connect problem, doesn't make sense to continue</em>.</li>
|
||||||
<li>MAX_OSSL_FAIL: A number which tells testssl.sh how often an OpenSSL s_client connect may fail before the program gives up and terminates. The default is 2. You can increase it to a higher value if you frequently see a message like <em>Fatal error: repeated TCP connect problems, giving up</em>.</li>
|
<li>MAX_OSSL_FAIL: A number which tells testssl.sh how often an OpenSSL s_client connect may fail before the program gives up and terminates. The default is 2. You can increase it to a higher value if you frequently see a message like <em>Fatal error: repeated TCP connect problems, giving up</em>.</li>
|
||||||
<li>MAX_HEADER_FAIL: A number which tells testssl.sh how often a HTTP GET request over OpenSSL may return an empty file before the program gives up and terminates. The default is 3. Also here you can incerase the threshold when you spot messages like <em>Fatal error: repeated HTTP header connect problems, doesn't make sense to continue</em>.</li>
|
<li>MAX_HEADER_FAIL: A number which tells testssl.sh how often a HTTP GET request over OpenSSL may return an empty file before the program gives up and terminates. The default is 3. Also here you can increase the threshold when you spot messages like <em>Fatal error: repeated HTTP header connect problems, doesn't make sense to continue</em>.</li>
|
||||||
</ul>
|
</ul>
|
||||||
|
|
||||||
|
|
||||||
|
@ -98,7 +98,7 @@ Please note that `fname` has to be in Unix format. DOS carriage returns won't be
|
|||||||
|
|
||||||
`--mode <serial|parallel>`. Mass testing to be done serial (default) or parallel (`--parallel` is shortcut for the latter, `--serial` is the opposite option). Per default mass testing is being run in serial mode, i.e. one line after the other is processed and invoked. The variable `MASS_TESTING_MODE` can be defined to be either equal `serial` or `parallel`.
|
`--mode <serial|parallel>`. Mass testing to be done serial (default) or parallel (`--parallel` is shortcut for the latter, `--serial` is the opposite option). Per default mass testing is being run in serial mode, i.e. one line after the other is processed and invoked. The variable `MASS_TESTING_MODE` can be defined to be either equal `serial` or `parallel`.
|
||||||
|
|
||||||
`--warnings <batch|off>`. The warnings parameter determines how testssl.sh will deal with situations where user input normally will be necessary. There are two options. `batch` doesn't wait for a confirming keypress when a client- or server-side probem is encountered. As of 3.0 it just then terminates the particular scan. This is automatically chosen for mass testing (`--file`). `off` just skips the warning, the confirmation but continues the scan, independent whether it makes sense or not. Please note that there are conflicts where testssl.sh will still ask for confirmation which are the ones which otherwise would have a drastic impact on the results. Almost any other decision will be made in the future as a best guess by testssl.sh.
|
`--warnings <batch|off>`. The warnings parameter determines how testssl.sh will deal with situations where user input normally will be necessary. There are two options. `batch` doesn't wait for a confirming keypress when a client- or server-side problem is encountered. As of 3.0 it just then terminates the particular scan. This is automatically chosen for mass testing (`--file`). `off` just skips the warning, the confirmation but continues the scan, independent whether it makes sense or not. Please note that there are conflicts where testssl.sh will still ask for confirmation which are the ones which otherwise would have a drastic impact on the results. Almost any other decision will be made in the future as a best guess by testssl.sh.
|
||||||
The same can be achieved by setting the environment variable `WARNINGS`.
|
The same can be achieved by setting the environment variable `WARNINGS`.
|
||||||
|
|
||||||
`--connect-timeout <seconds>` This is useful for socket TCP connections to a node. If the node does not complete a TCP handshake (e.g. because it is down or behind a firewall or there's an IDS or a tarpit) testssl.sh may usually hang for around 2 minutes or even much more. This parameter instructs testssl.sh to wait at most `seconds` for the handshake to complete before giving up. This option only works if your OS has a timeout binary installed. CONNECT_TIMEOUT is the corresponding environment variable.
|
`--connect-timeout <seconds>` This is useful for socket TCP connections to a node. If the node does not complete a TCP handshake (e.g. because it is down or behind a firewall or there's an IDS or a tarpit) testssl.sh may usually hang for around 2 minutes or even much more. This parameter instructs testssl.sh to wait at most `seconds` for the handshake to complete before giving up. This option only works if your OS has a timeout binary installed. CONNECT_TIMEOUT is the corresponding environment variable.
|
||||||
@ -154,7 +154,7 @@ Any single check switch supplied as an argument prevents testssl.sh from doing a
|
|||||||
|
|
||||||
`-E, --cipher-per-proto` is similar to `-e, --each-cipher`. It checks each of the possible ciphers, here: per protocol. If you want to display each cipher tested you need to add `--show-each`. The output is sorted by security strength, it lists the encryption bits though.
|
`-E, --cipher-per-proto` is similar to `-e, --each-cipher`. It checks each of the possible ciphers, here: per protocol. If you want to display each cipher tested you need to add `--show-each`. The output is sorted by security strength, it lists the encryption bits though.
|
||||||
|
|
||||||
`-s, --std, --standard` tests certain lists of cipher suites / cipher catagories by strength. Those lists are (`openssl ciphers $LIST`, $LIST from below:)
|
`-s, --std, --standard` tests certain lists of cipher suites / cipher categories by strength. Those lists are (`openssl ciphers $LIST`, $LIST from below:)
|
||||||
|
|
||||||
* `NULL encryption ciphers`: 'NULL:eNULL'
|
* `NULL encryption ciphers`: 'NULL:eNULL'
|
||||||
* `Anonymous NULL ciphers`: 'aNULL:ADH'
|
* `Anonymous NULL ciphers`: 'aNULL:ADH'
|
||||||
@ -219,7 +219,7 @@ Also for multiple server certificates are being checked for as well as for the c
|
|||||||
|
|
||||||
### VULNERABILITIES
|
### VULNERABILITIES
|
||||||
|
|
||||||
`-U, --vulnerable, --vulnerabilities` Just tests all (of the following) vulnerabilities. The environment variable `VULN_THRESHLD` determines after which value a separate headline for each vulnerability is being displayed. Default is `1` which means if you check for two vulnerabilities, only the general headline for vulnerabilities section is displayed -- in addition to the vulnerability and the result. Otherwise each vulnerability or vulnerability section gets its own headline in addition to the output of the name of the vulnerabilty and test result. A vulnerability section is comprised of more than one check, e.g. the renegotiation vulnerability check has two checks, so has Logjam.
|
`-U, --vulnerable, --vulnerabilities` Just tests all (of the following) vulnerabilities. The environment variable `VULN_THRESHLD` determines after which value a separate headline for each vulnerability is being displayed. Default is `1` which means if you check for two vulnerabilities, only the general headline for vulnerabilities section is displayed -- in addition to the vulnerability and the result. Otherwise each vulnerability or vulnerability section gets its own headline in addition to the output of the name of the vulnerability and test result. A vulnerability section is comprised of more than one check, e.g. the renegotiation vulnerability check has two checks, so has Logjam.
|
||||||
|
|
||||||
`-H, --heartbleed` Checks for Heartbleed, a memory leakage in openssl. Unless the server side doesn't support the heartbeat extension it is likely that this check runs into a timeout. The seconds to wait for a reply can be adjusted with `HEARTBLEED_MAX_WAITSOCK`. 8 is the default.
|
`-H, --heartbleed` Checks for Heartbleed, a memory leakage in openssl. Unless the server side doesn't support the heartbeat extension it is likely that this check runs into a timeout. The seconds to wait for a reply can be adjusted with `HEARTBLEED_MAX_WAITSOCK`. 8 is the default.
|
||||||
|
|
||||||
@ -381,7 +381,7 @@ Except the environment variables mentioned above which can replace command line
|
|||||||
* CA_BUNDLES_PATH: If you have an own set of CA bundles or you want to point testssl.sh to a specific location of a CA bundle, you can use this variable to set the directory which testssl.sh will use. Please note that it overrides completely the builtin path of testssl.sh which means that you will only test against the bundles you point to. Also you might want to use `~/utils/create_ca_hashes.sh` to create the hashes for HPKP.
|
* CA_BUNDLES_PATH: If you have an own set of CA bundles or you want to point testssl.sh to a specific location of a CA bundle, you can use this variable to set the directory which testssl.sh will use. Please note that it overrides completely the builtin path of testssl.sh which means that you will only test against the bundles you point to. Also you might want to use `~/utils/create_ca_hashes.sh` to create the hashes for HPKP.
|
||||||
* MAX_SOCKET_FAIL: A number which tells testssl.sh how often a TCP socket connection may fail before the program gives up and terminates. The default is 2. You can increase it to a higher value if you frequently see a message like *Fatal error: repeated openssl s_client connect problem, doesn't make sense to continue*.
|
* MAX_SOCKET_FAIL: A number which tells testssl.sh how often a TCP socket connection may fail before the program gives up and terminates. The default is 2. You can increase it to a higher value if you frequently see a message like *Fatal error: repeated openssl s_client connect problem, doesn't make sense to continue*.
|
||||||
* MAX_OSSL_FAIL: A number which tells testssl.sh how often an OpenSSL s_client connect may fail before the program gives up and terminates. The default is 2. You can increase it to a higher value if you frequently see a message like *Fatal error: repeated TCP connect problems, giving up*.
|
* MAX_OSSL_FAIL: A number which tells testssl.sh how often an OpenSSL s_client connect may fail before the program gives up and terminates. The default is 2. You can increase it to a higher value if you frequently see a message like *Fatal error: repeated TCP connect problems, giving up*.
|
||||||
* MAX_HEADER_FAIL: A number which tells testssl.sh how often a HTTP GET request over OpenSSL may return an empty file before the program gives up and terminates. The default is 3. Also here you can incerase the threshold when you spot messages like *Fatal error: repeated HTTP header connect problems, doesn't make sense to continue*.
|
* MAX_HEADER_FAIL: A number which tells testssl.sh how often a HTTP GET request over OpenSSL may return an empty file before the program gives up and terminates. The default is 3. Also here you can increase the threshold when you spot messages like *Fatal error: repeated HTTP header connect problems, doesn't make sense to continue*.
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
@ -19,7 +19,7 @@ The whole process is done manually.
|
|||||||
* Review TLS extension 13 (=0x000d) whether any SHA1 signature algorithm is listed. If not "requiresSha2" is true
|
* Review TLS extension 13 (=0x000d) whether any SHA1 signature algorithm is listed. If not "requiresSha2" is true
|
||||||
* Leave "maxDhBits"/"minDhBits" and "minRsaBits"/"maxRsaBits" at -1, unless you know for sure what the client can handle
|
* Leave "maxDhBits"/"minDhBits" and "minRsaBits"/"maxRsaBits" at -1, unless you know for sure what the client can handle
|
||||||
* For "ciphers" mark the cipher suites --> Copy --> As a hex stream, remove any leading GREASE ciphers (?a?a) and supply it to `~/utils/hexstream2cipher.sh`
|
* For "ciphers" mark the cipher suites --> Copy --> As a hex stream, remove any leading GREASE ciphers (?a?a) and supply it to `~/utils/hexstream2cipher.sh`
|
||||||
* "ciphersutes" are TLS 1.3 ciphersuites. You can identify them as they currently are like 0x130?. Retrieve them from above see ``~/utils/hexstream2cipher.sh``
|
* "ciphersuites" are TLS 1.3 ciphersuites. You can identify them as they currently are like 0x130?. Retrieve them from above see ``~/utils/hexstream2cipher.sh``
|
||||||
* Figure out the services by applying a good piece of human logic
|
* Figure out the services by applying a good piece of human logic
|
||||||
* Before submitting a PR: test it yourself! You can also watch it again via wireshark
|
* Before submitting a PR: test it yourself! You can also watch it again via wireshark
|
||||||
|
|
||||||
|
68
testssl.sh
68
testssl.sh
@ -169,7 +169,7 @@ echo A | sed -E 's/A//' >/dev/null 2>&1 && \
|
|||||||
declare -r HAS_SED_E=true || \
|
declare -r HAS_SED_E=true || \
|
||||||
declare -r HAS_SED_E=false
|
declare -r HAS_SED_E=false
|
||||||
|
|
||||||
########### Terminal defintions
|
########### Terminal definitions
|
||||||
tty -s && \
|
tty -s && \
|
||||||
declare -r INTERACTIVE=true || \
|
declare -r INTERACTIVE=true || \
|
||||||
declare -r INTERACTIVE=false
|
declare -r INTERACTIVE=false
|
||||||
@ -292,7 +292,7 @@ CURVES_OFFERED="" # This keeps which curves have been dete
|
|||||||
KNOWN_OSSL_PROB=false # We need OpenSSL a few times. This variable is an indicator if we can't connect. Eases handling
|
KNOWN_OSSL_PROB=false # We need OpenSSL a few times. This variable is an indicator if we can't connect. Eases handling
|
||||||
DETECTED_TLS_VERSION="" # .. as hex string, e.g. 0300 or 0303
|
DETECTED_TLS_VERSION="" # .. as hex string, e.g. 0300 or 0303
|
||||||
TLS13_ONLY=false # Does the server support TLS 1.3 ONLY?
|
TLS13_ONLY=false # Does the server support TLS 1.3 ONLY?
|
||||||
OSSL_SHORTCUT=${OSSL_SHORTCUT:-false} # Hack: if during the scan turns out the OpenSSL binary suports TLS 1.3 would be a better choice, this enables it.
|
OSSL_SHORTCUT=${OSSL_SHORTCUT:-false} # Hack: if during the scan turns out the OpenSSL binary supports TLS 1.3 would be a better choice, this enables it.
|
||||||
TLS_EXTENSIONS=""
|
TLS_EXTENSIONS=""
|
||||||
declare -r NPN_PROTOs="spdy/4a2,spdy/3,spdy/3.1,spdy/2,spdy/1,http/1.1"
|
declare -r NPN_PROTOs="spdy/4a2,spdy/3,spdy/3.1,spdy/2,spdy/1,http/1.1"
|
||||||
# alpn_protos needs to be space-separated, not comma-seperated, including odd ones observed @ facebook and others, old ones like h2-17 omitted as they could not be found
|
# alpn_protos needs to be space-separated, not comma-seperated, including odd ones observed @ facebook and others, old ones like h2-17 omitted as they could not be found
|
||||||
@ -1877,7 +1877,7 @@ wait_kill(){
|
|||||||
|
|
||||||
# Convert date formats -- we always use GMT=UTC here
|
# Convert date formats -- we always use GMT=UTC here
|
||||||
# argv1: source date string
|
# argv1: source date string
|
||||||
# argv2: dest date sting
|
# argv2: dest date string
|
||||||
if "$HAS_GNUDATE"; then # Linux and NetBSD
|
if "$HAS_GNUDATE"; then # Linux and NetBSD
|
||||||
parse_date() {
|
parse_date() {
|
||||||
LC_ALL=C TZ=GMT date -d "$1" "$2"
|
LC_ALL=C TZ=GMT date -d "$1" "$2"
|
||||||
@ -1887,7 +1887,7 @@ elif "$HAS_FREEBSDDATE"; then # FreeBSD, OS X and newer (~6.6) OpenBSD vers
|
|||||||
LC_ALL=C TZ=GMT date -j -f "$3" "$2" "$1"
|
LC_ALL=C TZ=GMT date -j -f "$3" "$2" "$1"
|
||||||
}
|
}
|
||||||
elif "$HAS_OPENBSDDATE"; then
|
elif "$HAS_OPENBSDDATE"; then
|
||||||
# We bascially echo it as a conversion as we want it is too difficult. Approach for that would be:
|
# We basically echo it as a conversion as we want it is too difficult. Approach for that would be:
|
||||||
# printf '%s\n' "$1" | awk '{ printf "%04d%02d%02d\n", $4, $2, (index("JanFebMarAprMayJunJulAugSepOctNovDec",$1)+2)/3}'
|
# printf '%s\n' "$1" | awk '{ printf "%04d%02d%02d\n", $4, $2, (index("JanFebMarAprMayJunJulAugSepOctNovDec",$1)+2)/3}'
|
||||||
# 4: year, 1: month, 2: day, $3: time (e.g. "Dec 8 10:16:13 2016")
|
# 4: year, 1: month, 2: day, $3: time (e.g. "Dec 8 10:16:13 2016")
|
||||||
# This way we could also kind of convert args to epoch but as newer OpenBSDs "date" behave like FreeBSD
|
# This way we could also kind of convert args to epoch but as newer OpenBSDs "date" behave like FreeBSD
|
||||||
@ -2199,7 +2199,7 @@ run_http_header() {
|
|||||||
debugme echo "NOW_TIME: $NOW_TIME | HTTP_TIME: $HTTP_TIME"
|
debugme echo "NOW_TIME: $NOW_TIME | HTTP_TIME: $HTTP_TIME"
|
||||||
|
|
||||||
# Quit on first empty line to catch 98% of the cases. Next pattern is there because the SEDs tested
|
# Quit on first empty line to catch 98% of the cases. Next pattern is there because the SEDs tested
|
||||||
# so far seem not to be fine with header containing x0d x0a (CRLF) which is the usal case.
|
# so far seem not to be fine with header containing x0d x0a (CRLF) which is the usual case.
|
||||||
# So we also trigger also on any sign on a single line which is not alphanumeric (plus _)
|
# So we also trigger also on any sign on a single line which is not alphanumeric (plus _)
|
||||||
sed -e '/^$/q' -e '/^[^a-zA-Z_0-9]$/q' $HEADERFILE >$HEADERFILE.tmp
|
sed -e '/^$/q' -e '/^[^a-zA-Z_0-9]$/q' $HEADERFILE >$HEADERFILE.tmp
|
||||||
# Now to be more sure we delete from '<' or '{' maybe with a leading blank until the end
|
# Now to be more sure we delete from '<' or '{' maybe with a leading blank until the end
|
||||||
@ -3304,7 +3304,7 @@ neat_list(){
|
|||||||
[[ "$enc" == ChaCha20-Poly1305 ]] && enc="CHACHA20(256)"
|
[[ "$enc" == ChaCha20-Poly1305 ]] && enc="CHACHA20(256)"
|
||||||
[[ "$enc" == GOST-28178-89-CNT ]] && enc="GOST(256)"
|
[[ "$enc" == GOST-28178-89-CNT ]] && enc="GOST(256)"
|
||||||
|
|
||||||
strength="${enc//\)/}" # retrieve (). first remove traling ")"
|
strength="${enc//\)/}" # retrieve (). first remove trailing ")"
|
||||||
strength="${strength#*\(}" # exfiltrate (VAL
|
strength="${strength#*\(}" # exfiltrate (VAL
|
||||||
enc="${enc%%\(*}"
|
enc="${enc%%\(*}"
|
||||||
|
|
||||||
@ -4423,7 +4423,7 @@ client_simulation_sockets() {
|
|||||||
# robustness to the implementation
|
# robustness to the implementation
|
||||||
# see also https://github.com/drwetter/testssl.sh/pull/797
|
# see also https://github.com/drwetter/testssl.sh/pull/797
|
||||||
if [[ "${1:0:4}" == 1603 ]]; then
|
if [[ "${1:0:4}" == 1603 ]]; then
|
||||||
# Extact list of cipher suites from SSLv3 or later ClientHello
|
# Extract list of cipher suites from SSLv3 or later ClientHello
|
||||||
sid_len=4*$(hex2dec "${data:174:2}")
|
sid_len=4*$(hex2dec "${data:174:2}")
|
||||||
offset1=178+$sid_len
|
offset1=178+$sid_len
|
||||||
offset2=182+$sid_len
|
offset2=182+$sid_len
|
||||||
@ -4431,7 +4431,7 @@ client_simulation_sockets() {
|
|||||||
offset1=186+$sid_len
|
offset1=186+$sid_len
|
||||||
code2network "$(tolower "${data:offset1:len}")" # convert CIPHER_SUITES to a "standardized" format
|
code2network "$(tolower "${data:offset1:len}")" # convert CIPHER_SUITES to a "standardized" format
|
||||||
else
|
else
|
||||||
# Extact list of cipher suites from SSLv2 ClientHello
|
# Extract list of cipher suites from SSLv2 ClientHello
|
||||||
len=2*$(hex2dec "${clienthello:12:2}")
|
len=2*$(hex2dec "${clienthello:12:2}")
|
||||||
for (( i=22; i < 22+len; i=i+6 )); do
|
for (( i=22; i < 22+len; i=i+6 )); do
|
||||||
offset1=$i+2
|
offset1=$i+2
|
||||||
@ -4875,7 +4875,7 @@ run_prototest_openssl() {
|
|||||||
add_tls_offered() {
|
add_tls_offered() {
|
||||||
# the ":" is mandatory here (and @ other places), otherwise e.g. tls1 will match tls1_2
|
# the ":" is mandatory here (and @ other places), otherwise e.g. tls1 will match tls1_2
|
||||||
if [[ "$PROTOS_OFFERED" =~ $1: ]]; then
|
if [[ "$PROTOS_OFFERED" =~ $1: ]]; then
|
||||||
# we got that protcol already
|
# we got that protocol already
|
||||||
:
|
:
|
||||||
else
|
else
|
||||||
PROTOS_OFFERED+="${1}:$2 "
|
PROTOS_OFFERED+="${1}:$2 "
|
||||||
@ -7338,19 +7338,19 @@ get_server_certificate() {
|
|||||||
local success ret
|
local success ret
|
||||||
local npn_params="" line
|
local npn_params="" line
|
||||||
local ciphers_to_test=""
|
local ciphers_to_test=""
|
||||||
# Cipher suites that use a certifiate with an RSA (signature) public key
|
# Cipher suites that use a certificate with an RSA (signature) public key
|
||||||
local -r a_rsa="cc,13, cc,15, c0,30, c0,28, c0,14, 00,9f, cc,a8, cc,aa, c0,a3, c0,9f, 00,6b, 00,39, c0,77, 00,c4, 00,88, c0,45, c0,4d, c0,53, c0,61, c0,7d, c0,8b, 16,b7, 16,b9, c0,2f, c0,27, c0,13, 00,9e, c0,a2, c0,9e, 00,67, 00,33, c0,76, 00,be, 00,9a, 00,45, c0,44, c0,4c, c0,52, c0,60, c0,7c, c0,8a, c0,11, c0,12, 00,16, 00,15, 00,14, c0,10"
|
local -r a_rsa="cc,13, cc,15, c0,30, c0,28, c0,14, 00,9f, cc,a8, cc,aa, c0,a3, c0,9f, 00,6b, 00,39, c0,77, 00,c4, 00,88, c0,45, c0,4d, c0,53, c0,61, c0,7d, c0,8b, 16,b7, 16,b9, c0,2f, c0,27, c0,13, 00,9e, c0,a2, c0,9e, 00,67, 00,33, c0,76, 00,be, 00,9a, 00,45, c0,44, c0,4c, c0,52, c0,60, c0,7c, c0,8a, c0,11, c0,12, 00,16, 00,15, 00,14, c0,10"
|
||||||
# Cipher suites that use a certifiate with an RSA (encryption) public key
|
# Cipher suites that use a certificate with an RSA (encryption) public key
|
||||||
local -r e_rsa="00,b7, c0,99, 00,ad, cc,ae, 00,9d, c0,a1, c0,9d, 00,3d, 00,35, 00,c0, 00,84, 00,95, c0,3d, c0,51, c0,69, c0,6f, c0,7b, c0,93, ff,01, 00,ac, c0,a0, c0,9c, 00,9c, 00,3c, 00,2f, 00,ba, 00,b6, 00,96, 00,41, c0,98, 00,07, 00,94, c0,3c, c0,50, c0,68, c0,6e, c0,7a, c0,92, 00,05, 00,04, 00,92, 00,0a, 00,93, fe,ff, ff,e0, 00,62, 00,09, 00,61, fe,fe, ff,e1, 00,64, 00,60, 00,08, 00,06, 00,03, 00,b9, 00,b8, 00,2e, 00,3b, 00,02, 00,01, ff,00"
|
local -r e_rsa="00,b7, c0,99, 00,ad, cc,ae, 00,9d, c0,a1, c0,9d, 00,3d, 00,35, 00,c0, 00,84, 00,95, c0,3d, c0,51, c0,69, c0,6f, c0,7b, c0,93, ff,01, 00,ac, c0,a0, c0,9c, 00,9c, 00,3c, 00,2f, 00,ba, 00,b6, 00,96, 00,41, c0,98, 00,07, 00,94, c0,3c, c0,50, c0,68, c0,6e, c0,7a, c0,92, 00,05, 00,04, 00,92, 00,0a, 00,93, fe,ff, ff,e0, 00,62, 00,09, 00,61, fe,fe, ff,e1, 00,64, 00,60, 00,08, 00,06, 00,03, 00,b9, 00,b8, 00,2e, 00,3b, 00,02, 00,01, ff,00"
|
||||||
# Cipher suites that use a certifiate with a DSA public key
|
# Cipher suites that use a certificate with a DSA public key
|
||||||
local -r a_dss="00,a3, 00,6a, 00,38, 00,c3, 00,87, c0,43, c0,57, c0,81, 00,a2, 00,40, 00,32, 00,bd, 00,99, 00,44, c0,42, c0,56, c0,80, 00,66, 00,13, 00,63, 00,12, 00,65, 00,11"
|
local -r a_dss="00,a3, 00,6a, 00,38, 00,c3, 00,87, c0,43, c0,57, c0,81, 00,a2, 00,40, 00,32, 00,bd, 00,99, 00,44, c0,42, c0,56, c0,80, 00,66, 00,13, 00,63, 00,12, 00,65, 00,11"
|
||||||
# Cipher suites that use a certifiate with a DH public key
|
# Cipher suites that use a certificate with a DH public key
|
||||||
local -r a_dh="00,a5, 00,a1, 00,69, 00,68, 00,37, 00,36, 00,c2, 00,c1, 00,86, 00,85, c0,3f, c0,41, c0,55, c0,59, c0,7f, c0,83, 00,a4, 00,a0, 00,3f, 00,3e, 00,31, 00,30, 00,bc, 00,bb, 00,98, 00,97, 00,43, 00,42, c0,3e, c0,40, c0,54, c0,58, c0,7e, c0,82, 00,10, 00,0d, 00,0f, 00,0c, 00,0b, 00,0e"
|
local -r a_dh="00,a5, 00,a1, 00,69, 00,68, 00,37, 00,36, 00,c2, 00,c1, 00,86, 00,85, c0,3f, c0,41, c0,55, c0,59, c0,7f, c0,83, 00,a4, 00,a0, 00,3f, 00,3e, 00,31, 00,30, 00,bc, 00,bb, 00,98, 00,97, 00,43, 00,42, c0,3e, c0,40, c0,54, c0,58, c0,7e, c0,82, 00,10, 00,0d, 00,0f, 00,0c, 00,0b, 00,0e"
|
||||||
# Cipher suites that use a certifiate with an ECDH public key
|
# Cipher suites that use a certificate with an ECDH public key
|
||||||
local -r a_ecdh="c0,32, c0,2e, c0,2a, c0,26, c0,0f, c0,05, c0,79, c0,75, c0,4b, c0,4f, c0,5f, c0,63, c0,89, c0,8d, c0,31, c0,2d, c0,29, c0,25, c0,0e, c0,04, c0,78, c0,74, c0,4a, c0,4e, c0,5e, c0,62, c0,88, c0,8c, c0,0c, c0,02, c0,0d, c0,03, c0,0b, c0,01"
|
local -r a_ecdh="c0,32, c0,2e, c0,2a, c0,26, c0,0f, c0,05, c0,79, c0,75, c0,4b, c0,4f, c0,5f, c0,63, c0,89, c0,8d, c0,31, c0,2d, c0,29, c0,25, c0,0e, c0,04, c0,78, c0,74, c0,4a, c0,4e, c0,5e, c0,62, c0,88, c0,8c, c0,0c, c0,02, c0,0d, c0,03, c0,0b, c0,01"
|
||||||
# Cipher suites that use a certifiate with an ECDSA public key
|
# Cipher suites that use a certificate with an ECDSA public key
|
||||||
local -r a_ecdsa="cc,14, c0,2c, c0,24, c0,0a, cc,a9, c0,af, c0,ad, c0,73, c0,49, c0,5d, c0,87, 16,b8, 16,ba, c0,2b, c0,23, c0,09, c0,ae, c0,ac, c0,72, c0,48, c0,5c, c0,86, c0,07, c0,08, c0,06"
|
local -r a_ecdsa="cc,14, c0,2c, c0,24, c0,0a, cc,a9, c0,af, c0,ad, c0,73, c0,49, c0,5d, c0,87, 16,b8, 16,ba, c0,2b, c0,23, c0,09, c0,ae, c0,ac, c0,72, c0,48, c0,5c, c0,86, c0,07, c0,08, c0,06"
|
||||||
# Cipher suites that use a certifiate with a GOST public key
|
# Cipher suites that use a certificate with a GOST public key
|
||||||
local -r a_gost="00,80, 00,81, 00,82, 00,83"
|
local -r a_gost="00,80, 00,81, 00,82, 00,83"
|
||||||
local using_sockets=true
|
local using_sockets=true
|
||||||
|
|
||||||
@ -7373,7 +7373,7 @@ get_server_certificate() {
|
|||||||
extract_stapled_ocsp
|
extract_stapled_ocsp
|
||||||
success=$?
|
success=$?
|
||||||
else
|
else
|
||||||
# For STARTTLS protcols not being implemented yet via sockets this is a bypass otherwise it won't be usable at all (e.g. LDAP)
|
# For STARTTLS protocols not being implemented yet via sockets this is a bypass otherwise it won't be usable at all (e.g. LDAP)
|
||||||
if ( [[ "$STARTTLS" =~ ldap ]] || [[ "$STARTTLS" =~ irc ]] ); then
|
if ( [[ "$STARTTLS" =~ ldap ]] || [[ "$STARTTLS" =~ irc ]] ); then
|
||||||
return 1
|
return 1
|
||||||
elif [[ "$1" =~ "tls1_3_RSA" ]]; then
|
elif [[ "$1" =~ "tls1_3_RSA" ]]; then
|
||||||
@ -7458,7 +7458,7 @@ get_server_certificate() {
|
|||||||
cp $TEMPDIR/$NODEIP.parse_tls_serverhello.txt $TMPFILE
|
cp $TEMPDIR/$NODEIP.parse_tls_serverhello.txt $TMPFILE
|
||||||
|
|
||||||
# When "$2" is empty, get_server_certificate() is being called with SNI="".
|
# When "$2" is empty, get_server_certificate() is being called with SNI="".
|
||||||
# In case the extensions returned by the server differ depending on wheter
|
# In case the extensions returned by the server differ depending on whether
|
||||||
# SNI is provided or not, don't collect extensions when SNI="" (unless
|
# SNI is provided or not, don't collect extensions when SNI="" (unless
|
||||||
# no DNS name was provided at the command line).
|
# no DNS name was provided at the command line).
|
||||||
[[ -z "$2" ]] && extract_new_tls_extensions $TMPFILE
|
[[ -z "$2" ]] && extract_new_tls_extensions $TMPFILE
|
||||||
@ -7513,7 +7513,7 @@ get_server_certificate() {
|
|||||||
"ssl3") DETECTED_TLS_VERSION="0300" ;;
|
"ssl3") DETECTED_TLS_VERSION="0300" ;;
|
||||||
esac
|
esac
|
||||||
# When "$2" is empty, get_server_certificate() is being called with SNI="".
|
# When "$2" is empty, get_server_certificate() is being called with SNI="".
|
||||||
# In case the extensions returned by the server differ depending on wheter
|
# In case the extensions returned by the server differ depending on whether
|
||||||
# SNI is provided or not, don't collect extensions when SNI="" (unless
|
# SNI is provided or not, don't collect extensions when SNI="" (unless
|
||||||
# no DNS name was provided at the command line).
|
# no DNS name was provided at the command line).
|
||||||
[[ -z "$2" ]] && extract_new_tls_extensions $TMPFILE
|
[[ -z "$2" ]] && extract_new_tls_extensions $TMPFILE
|
||||||
@ -7807,7 +7807,7 @@ etsi_etls_visibility_info() {
|
|||||||
# OpenSSL displays all names of type otherName as "othername:<unsupported>".
|
# OpenSSL displays all names of type otherName as "othername:<unsupported>".
|
||||||
# As certificates will rarely include a name encoded as an otherName, check the
|
# As certificates will rarely include a name encoded as an otherName, check the
|
||||||
# text version of the certificate for "othername:<unsupported>" before calling
|
# text version of the certificate for "othername:<unsupported>" before calling
|
||||||
# external functions to obtain the DER encoded certficate.
|
# external functions to obtain the DER encoded certificate.
|
||||||
if [[ "$cert_txt" =~ X509v3\ Subject\ Alternative\ Name:.*othername:\<unsupported\> ]]; then
|
if [[ "$cert_txt" =~ X509v3\ Subject\ Alternative\ Name:.*othername:\<unsupported\> ]]; then
|
||||||
dercert="$($OPENSSL x509 -in "$cert" -outform DER 2>>$ERRFILE | hexdump -v -e '16/1 "%02X"')"
|
dercert="$($OPENSSL x509 -in "$cert" -outform DER 2>>$ERRFILE | hexdump -v -e '16/1 "%02X"')"
|
||||||
if [[ "$dercert" =~ 0603551D110101FF04[0-9A-F]*060604009B430301 ]] || \
|
if [[ "$dercert" =~ 0603551D110101FF04[0-9A-F]*060604009B430301 ]] || \
|
||||||
@ -8003,19 +8003,19 @@ certificate_transparency() {
|
|||||||
local hexc n ciph sslver kx auth enc mac export
|
local hexc n ciph sslver kx auth enc mac export
|
||||||
local extra_extns=""
|
local extra_extns=""
|
||||||
local -i success
|
local -i success
|
||||||
# Cipher suites that use a certifiate with an RSA (signature) public key
|
# Cipher suites that use a certificate with an RSA (signature) public key
|
||||||
local -r a_rsa="cc,13, cc,15, c0,30, c0,28, c0,14, 00,9f, cc,a8, cc,aa, c0,a3, c0,9f, 00,6b, 00,39, c0,77, 00,c4, 00,88, c0,45, c0,4d, c0,53, c0,61, c0,7d, c0,8b, 16,b7, 16,b9, c0,2f, c0,27, c0,13, 00,9e, c0,a2, c0,9e, 00,67, 00,33, c0,76, 00,be, 00,9a, 00,45, c0,44, c0,4c, c0,52, c0,60, c0,7c, c0,8a, c0,11, c0,12, 00,16, 00,15, 00,14, c0,10"
|
local -r a_rsa="cc,13, cc,15, c0,30, c0,28, c0,14, 00,9f, cc,a8, cc,aa, c0,a3, c0,9f, 00,6b, 00,39, c0,77, 00,c4, 00,88, c0,45, c0,4d, c0,53, c0,61, c0,7d, c0,8b, 16,b7, 16,b9, c0,2f, c0,27, c0,13, 00,9e, c0,a2, c0,9e, 00,67, 00,33, c0,76, 00,be, 00,9a, 00,45, c0,44, c0,4c, c0,52, c0,60, c0,7c, c0,8a, c0,11, c0,12, 00,16, 00,15, 00,14, c0,10"
|
||||||
# Cipher suites that use a certifiate with an RSA (encryption) public key
|
# Cipher suites that use a certificate with an RSA (encryption) public key
|
||||||
local -r e_rsa="00,b7, c0,99, 00,ad, cc,ae, 00,9d, c0,a1, c0,9d, 00,3d, 00,35, 00,c0, 00,84, 00,95, c0,3d, c0,51, c0,69, c0,6f, c0,7b, c0,93, ff,01, 00,ac, c0,a0, c0,9c, 00,9c, 00,3c, 00,2f, 00,ba, 00,b6, 00,96, 00,41, c0,98, 00,07, 00,94, c0,3c, c0,50, c0,68, c0,6e, c0,7a, c0,92, 00,05, 00,04, 00,92, 00,0a, 00,93, fe,ff, ff,e0, 00,62, 00,09, 00,61, fe,fe, ff,e1, 00,64, 00,60, 00,08, 00,06, 00,03, 00,b9, 00,b8, 00,2e, 00,3b, 00,02, 00,01, ff,00"
|
local -r e_rsa="00,b7, c0,99, 00,ad, cc,ae, 00,9d, c0,a1, c0,9d, 00,3d, 00,35, 00,c0, 00,84, 00,95, c0,3d, c0,51, c0,69, c0,6f, c0,7b, c0,93, ff,01, 00,ac, c0,a0, c0,9c, 00,9c, 00,3c, 00,2f, 00,ba, 00,b6, 00,96, 00,41, c0,98, 00,07, 00,94, c0,3c, c0,50, c0,68, c0,6e, c0,7a, c0,92, 00,05, 00,04, 00,92, 00,0a, 00,93, fe,ff, ff,e0, 00,62, 00,09, 00,61, fe,fe, ff,e1, 00,64, 00,60, 00,08, 00,06, 00,03, 00,b9, 00,b8, 00,2e, 00,3b, 00,02, 00,01, ff,00"
|
||||||
# Cipher suites that use a certifiate with a DSA public key
|
# Cipher suites that use a certificate with a DSA public key
|
||||||
local -r a_dss="00,a3, 00,6a, 00,38, 00,c3, 00,87, c0,43, c0,57, c0,81, 00,a2, 00,40, 00,32, 00,bd, 00,99, 00,44, c0,42, c0,56, c0,80, 00,66, 00,13, 00,63, 00,12, 00,65, 00,11"
|
local -r a_dss="00,a3, 00,6a, 00,38, 00,c3, 00,87, c0,43, c0,57, c0,81, 00,a2, 00,40, 00,32, 00,bd, 00,99, 00,44, c0,42, c0,56, c0,80, 00,66, 00,13, 00,63, 00,12, 00,65, 00,11"
|
||||||
# Cipher suites that use a certifiate with a DH public key
|
# Cipher suites that use a certificate with a DH public key
|
||||||
local -r a_dh="00,a5, 00,a1, 00,69, 00,68, 00,37, 00,36, 00,c2, 00,c1, 00,86, 00,85, c0,3f, c0,41, c0,55, c0,59, c0,7f, c0,83, 00,a4, 00,a0, 00,3f, 00,3e, 00,31, 00,30, 00,bc, 00,bb, 00,98, 00,97, 00,43, 00,42, c0,3e, c0,40, c0,54, c0,58, c0,7e, c0,82, 00,10, 00,0d, 00,0f, 00,0c, 00,0b, 00,0e"
|
local -r a_dh="00,a5, 00,a1, 00,69, 00,68, 00,37, 00,36, 00,c2, 00,c1, 00,86, 00,85, c0,3f, c0,41, c0,55, c0,59, c0,7f, c0,83, 00,a4, 00,a0, 00,3f, 00,3e, 00,31, 00,30, 00,bc, 00,bb, 00,98, 00,97, 00,43, 00,42, c0,3e, c0,40, c0,54, c0,58, c0,7e, c0,82, 00,10, 00,0d, 00,0f, 00,0c, 00,0b, 00,0e"
|
||||||
# Cipher suites that use a certifiate with an ECDH public key
|
# Cipher suites that use a certificate with an ECDH public key
|
||||||
local -r a_ecdh="c0,32, c0,2e, c0,2a, c0,26, c0,0f, c0,05, c0,79, c0,75, c0,4b, c0,4f, c0,5f, c0,63, c0,89, c0,8d, c0,31, c0,2d, c0,29, c0,25, c0,0e, c0,04, c0,78, c0,74, c0,4a, c0,4e, c0,5e, c0,62, c0,88, c0,8c, c0,0c, c0,02, c0,0d, c0,03, c0,0b, c0,01"
|
local -r a_ecdh="c0,32, c0,2e, c0,2a, c0,26, c0,0f, c0,05, c0,79, c0,75, c0,4b, c0,4f, c0,5f, c0,63, c0,89, c0,8d, c0,31, c0,2d, c0,29, c0,25, c0,0e, c0,04, c0,78, c0,74, c0,4a, c0,4e, c0,5e, c0,62, c0,88, c0,8c, c0,0c, c0,02, c0,0d, c0,03, c0,0b, c0,01"
|
||||||
# Cipher suites that use a certifiate with an ECDSA public key
|
# Cipher suites that use a certificate with an ECDSA public key
|
||||||
local -r a_ecdsa="cc,14, c0,2c, c0,24, c0,0a, cc,a9, c0,af, c0,ad, c0,73, c0,49, c0,5d, c0,87, 16,b8, 16,ba, c0,2b, c0,23, c0,09, c0,ae, c0,ac, c0,72, c0,48, c0,5c, c0,86, c0,07, c0,08, c0,06"
|
local -r a_ecdsa="cc,14, c0,2c, c0,24, c0,0a, cc,a9, c0,af, c0,ad, c0,73, c0,49, c0,5d, c0,87, 16,b8, 16,ba, c0,2b, c0,23, c0,09, c0,ae, c0,ac, c0,72, c0,48, c0,5c, c0,86, c0,07, c0,08, c0,06"
|
||||||
# Cipher suites that use a certifiate with a GOST public key
|
# Cipher suites that use a certificate with a GOST public key
|
||||||
local -r a_gost="00,80, 00,81, 00,82, 00,83"
|
local -r a_gost="00,80, 00,81, 00,82, 00,83"
|
||||||
|
|
||||||
# First check whether signed certificate timestamps (SCT) are included in the
|
# First check whether signed certificate timestamps (SCT) are included in the
|
||||||
@ -10260,7 +10260,7 @@ starttls_mysql_dialog() {
|
|||||||
# 1 is the timeout value which only MySQL needs. Note, there seems no response whether STARTTLS
|
# 1 is the timeout value which only MySQL needs. Note, there seems no response whether STARTTLS
|
||||||
# succeeded. We could try harder, see https://github.com/openssl/openssl/blob/master/apps/s_client.c
|
# succeeded. We could try harder, see https://github.com/openssl/openssl/blob/master/apps/s_client.c
|
||||||
# but atm this seems sufficient as later we will fail if there's no STARTTLS.
|
# but atm this seems sufficient as later we will fail if there's no STARTTLS.
|
||||||
# BUT: there seeem to be cases when the handshake fails (8S01Bad handshake --> 30 38 53 30 31 42 61 64 20 68 61 6e 64 73 68 61 6b 65).
|
# BUT: there seem to be cases when the handshake fails (8S01Bad handshake --> 30 38 53 30 31 42 61 64 20 68 61 6e 64 73 68 61 6b 65).
|
||||||
# also there's a banner in the reply "<version><somebytes>mysql_native_password"
|
# also there's a banner in the reply "<version><somebytes>mysql_native_password"
|
||||||
# TODO: We could detect if the server supports STARTTLS via the "Server Capabilities"
|
# TODO: We could detect if the server supports STARTTLS via the "Server Capabilities"
|
||||||
# bit field, but we'd need to parse the binary stream, with greater precision than regex.
|
# bit field, but we'd need to parse the binary stream, with greater precision than regex.
|
||||||
@ -10422,7 +10422,7 @@ socksend_clienthello() {
|
|||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
# ARG1: hexbytes -- preceeded by x -- separated by commas, with a leading comma
|
# ARG1: hexbytes -- preceded by x -- separated by commas, with a leading comma
|
||||||
# ARG2: seconds to sleep
|
# ARG2: seconds to sleep
|
||||||
socksend() {
|
socksend() {
|
||||||
local data line
|
local data line
|
||||||
@ -14773,7 +14773,7 @@ run_sweet32() {
|
|||||||
pr_svrty_low "VULNERABLE"; out ", uses 64 bit block ciphers"
|
pr_svrty_low "VULNERABLE"; out ", uses 64 bit block ciphers"
|
||||||
fileout "SWEET32" "LOW" "uses 64 bit block ciphers" "$cve" "$cwe" "$hint"
|
fileout "SWEET32" "LOW" "uses 64 bit block ciphers" "$cve" "$cwe" "$hint"
|
||||||
elif "$ssl2_sweet"; then
|
elif "$ssl2_sweet"; then
|
||||||
pr_svrty_low "VULNERABLE"; out ", uses 64 bit block ciphers wth SSLv2 only"
|
pr_svrty_low "VULNERABLE"; out ", uses 64 bit block ciphers with SSLv2 only"
|
||||||
fileout "SWEET32" "LOW" "uses 64 bit block ciphers with SSLv2 only" "$cve" "$cwe" "$hint"
|
fileout "SWEET32" "LOW" "uses 64 bit block ciphers with SSLv2 only" "$cve" "$cwe" "$hint"
|
||||||
else
|
else
|
||||||
pr_svrty_best "not vulnerable (OK)";
|
pr_svrty_best "not vulnerable (OK)";
|
||||||
@ -14993,7 +14993,7 @@ run_tls_fallback_scsv() {
|
|||||||
# support SSLv3 and it is known that SSLv3 is the fallback protocol ($low_proto), then
|
# support SSLv3 and it is known that SSLv3 is the fallback protocol ($low_proto), then
|
||||||
# the test cannot be performed. Similarly, if SSLv3 could be the fallback protocol, but
|
# the test cannot be performed. Similarly, if SSLv3 could be the fallback protocol, but
|
||||||
# support for SSLv3 is unknown, then the test cannot be performed.
|
# support for SSLv3 is unknown, then the test cannot be performed.
|
||||||
# NOTE: This check assumes that any server that suppports SSLv3 and either TLS 1.2 or
|
# NOTE: This check assumes that any server that supports SSLv3 and either TLS 1.2 or
|
||||||
# TLS 1.1 would also support TLS 1. So, if $high_proto is not TLS 1, then it is assumed
|
# TLS 1.1 would also support TLS 1. So, if $high_proto is not TLS 1, then it is assumed
|
||||||
# that either (1) $low_proto has already been set (to TLS1.1 or TLS 1) or (2) no protocol
|
# that either (1) $low_proto has already been set (to TLS1.1 or TLS 1) or (2) no protocol
|
||||||
# lower than $high_proto is offered.
|
# lower than $high_proto is offered.
|
||||||
@ -15223,7 +15223,7 @@ get_common_prime() {
|
|||||||
return 1
|
return 1
|
||||||
else
|
else
|
||||||
dh_p="$(toupper "$dh_p")"
|
dh_p="$(toupper "$dh_p")"
|
||||||
# In the previous line of the match is bascially the hint we want to echo
|
# In the previous line of the match is basically the hint we want to echo
|
||||||
# the most elegant thing to get the previous line [ awk '/regex/ { print x }; { x=$0 }' ] doesn't work with gawk
|
# the most elegant thing to get the previous line [ awk '/regex/ { print x }; { x=$0 }' ] doesn't work with gawk
|
||||||
lineno_matched=$(grep -n "$dh_p" "$common_primes_file" 2>/dev/null | awk -F':' '{ print $1 }')
|
lineno_matched=$(grep -n "$dh_p" "$common_primes_file" 2>/dev/null | awk -F':' '{ print $1 }')
|
||||||
if [[ "$lineno_matched" -ne 0 ]]; then
|
if [[ "$lineno_matched" -ne 0 ]]; then
|
||||||
@ -17005,7 +17005,7 @@ find_openssl_binary() {
|
|||||||
$OPENSSL ciphers -s 2>&1 | grep -aiq "unknown option" || \
|
$OPENSSL ciphers -s 2>&1 | grep -aiq "unknown option" || \
|
||||||
OSSL_CIPHERS_S="-s"
|
OSSL_CIPHERS_S="-s"
|
||||||
|
|
||||||
# This and all other occurences we do a little trick using "invalid." to avoid plain and
|
# This and all other occurrences we do a little trick using "invalid." to avoid plain and
|
||||||
# link level DNS lookups. See issue #1418 and https://tools.ietf.org/html/rfc6761#section-6.4
|
# link level DNS lookups. See issue #1418 and https://tools.ietf.org/html/rfc6761#section-6.4
|
||||||
$OPENSSL s_client -ssl2 -connect invalid. 2>&1 | grep -aiq "unknown option" || \
|
$OPENSSL s_client -ssl2 -connect invalid. 2>&1 | grep -aiq "unknown option" || \
|
||||||
HAS_SSL2=true
|
HAS_SSL2=true
|
||||||
@ -18636,7 +18636,7 @@ determine_sizelimitbug() {
|
|||||||
local overflow_cipher='C0,86'
|
local overflow_cipher='C0,86'
|
||||||
local -i nr_ciphers
|
local -i nr_ciphers
|
||||||
|
|
||||||
# For STARTTLS protcols not being implemented yet via sockets this is a bypass otherwise it won't be usable at all (e.g. LDAP)
|
# For STARTTLS protocols not being implemented yet via sockets this is a bypass otherwise it won't be usable at all (e.g. LDAP)
|
||||||
# Fixme: find out whether we can't skip this in general for STARTTLS
|
# Fixme: find out whether we can't skip this in general for STARTTLS
|
||||||
[[ "$STARTTLS" =~ ldap ]] && return 0
|
[[ "$STARTTLS" =~ ldap ]] && return 0
|
||||||
[[ "$STARTTLS" =~ irc ]] && return 0
|
[[ "$STARTTLS" =~ irc ]] && return 0
|
||||||
|
@ -1,5 +1,5 @@
|
|||||||
|
|
||||||
# no early data, but TLS 1.3 with debian:buster (sid simlar in Feb 2019)
|
# no early data, but TLS 1.3 with debian:buster (sid similar in Feb 2019)
|
||||||
|
|
||||||
image=${1:-"debian:buster"}
|
image=${1:-"debian:buster"}
|
||||||
docker pull "$image"
|
docker pull "$image"
|
||||||
|
@ -1,6 +1,6 @@
|
|||||||
#!/usr/bin/env bash
|
#!/usr/bin/env bash
|
||||||
|
|
||||||
# Utility which converts grepable nmap outout to testssl's file input
|
# Utility which converts grepable nmap output to testssl's file input
|
||||||
# It is just borrowed from testssl.sh
|
# It is just borrowed from testssl.sh
|
||||||
# License see testssl.sh
|
# License see testssl.sh
|
||||||
|
|
||||||
|
@ -1,6 +1,6 @@
|
|||||||
#!/bin/bash
|
#!/bin/bash
|
||||||
|
|
||||||
# simple check for seesion resumption 1) by SID, 2) by tickets
|
# simple check for session resumption 1) by SID, 2) by tickets
|
||||||
# Author: Dirk Wetter, GPLv2 see https://testssl.sh/LICENSE.txt
|
# Author: Dirk Wetter, GPLv2 see https://testssl.sh/LICENSE.txt
|
||||||
|
|
||||||
|
|
||||||
|
@ -50,7 +50,7 @@ yellow=$(tput setaf 3; tput bold)
|
|||||||
normal=$(tput sgr0)
|
normal=$(tput sgr0)
|
||||||
|
|
||||||
send_clienthello() {
|
send_clienthello() {
|
||||||
local -i len_ch=216 # len of clienthello, exlcuding TLS session ticket and SID (record layer)
|
local -i len_ch=216 # len of clienthello, excluding TLS session ticket and SID (record layer)
|
||||||
local session_tckt_tls="$1"
|
local session_tckt_tls="$1"
|
||||||
local -i len_tckt_tls="${#1}"
|
local -i len_tckt_tls="${#1}"
|
||||||
local xlen_tckt_tls=""
|
local xlen_tckt_tls=""
|
||||||
@ -269,7 +269,7 @@ trap "cleanup" QUIT EXIT
|
|||||||
"$DEBUG" && ( echo; echo )
|
"$DEBUG" && ( echo; echo )
|
||||||
echo "##### 2) Sending 1 to 3 ClientHello(s) (TLS version 03,$TLSV) with this ticket and a made up SessionID"
|
echo "##### 2) Sending 1 to 3 ClientHello(s) (TLS version 03,$TLSV) with this ticket and a made up SessionID"
|
||||||
|
|
||||||
# we do 3 client hellos, and see whether different memmory is returned
|
# we do 3 client hellos, and see whether different memory is returned
|
||||||
for i in 1 2 3; do
|
for i in 1 2 3; do
|
||||||
fd_socket $PORT
|
fd_socket $PORT
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user