Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2025-05-17 05:36:04 +02:00
Code Issues Packages Projects Releases Wiki Activity

Relax STARTTLS FTP requirement (3.0)

Browse Source 
In rare? occassions where the STARTTLS FEAT request only displays AUTH instead
of AUTH TLS, testssl.sh fails as it cannot upgrade to TLS.

Required by RFC 4217 is only AUTH ("MUST"), AUTH TLS is optional ("should"), see section 6.
This PR relaxes the presence of TLS after AUTH and fixes  for the 3.0 branch.
This commit is contained in:
Dirk 2022-04-27 14:52:46 +02:00
parent 2eac75d5b5
commit 405f431612
1 changed files with 1 additions and 1 deletions

2
testssl.sh

@ -10297,7 +10297,7 @@ starttls_full_read(){
starttls_ftp_dialog() {
debugme echo "=== starting ftp STARTTLS dialog ==="
local reAUTHTLS='^ AUTH TLS'
local reAUTHTLS='^ AUTH'
starttls_full_read '^220-' '^220 ' && debugme echo "received server greeting" &&
starttls_just_send 'FEAT' && debugme echo "sent FEAT" &&
starttls_full_read '^(211-| )' '^211 ' "${reAUTHTLS}" && debugme echo "received server features and checked STARTTLS availability" &&