From 7f6ff5db3bbee8b7963e56dcd82f531a2228a2c9 Mon Sep 17 00:00:00 2001
From: Dirk <dirk@testssl.sh>
Date: Mon, 4 Dec 2017 21:06:47 +0100
Subject: [PATCH] Sloppy try to address in the worst cases of wrong coloring of
 ciphers

See pending PR #905 / issue #333.

There's still lots of work needed and probably the function
needs to be completely rewritten and to be in sync with
other parts of the program.
---
 testssl.sh | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/testssl.sh b/testssl.sh
index b3d8a0a..187b043 100755
--- a/testssl.sh
+++ b/testssl.sh
@@ -4828,11 +4828,11 @@ pr_cipher_quality() {
           if [[ $TLS_NR_CIPHERS -eq 0 ]]; then
                # We have the OpenSSL name and can't convert it to the RFC name
                case "$cipher" in
-                    *NULL*|*EXP*)
+                    *NULL*|*EXP*|ADH*)
                          pr_svrty_critical "$text"
                          return 1
                          ;;
-                    *RC4*)
+                    *RC4*|*RC2*)
                          pr_svrty_high "$text"
                          return 2
                          ;;
@@ -4858,11 +4858,11 @@ pr_cipher_quality() {
      fi
 
      case "$cipher" in
-          *NULL*|*EXP*|*RC2*|*_DES_*|*_DES40_*)
+          *NULL*|*EXP*|*RC2*|*_DES_*|*_DES40_*|*anon*)
                pr_svrty_critical "$text"
                return 1
                ;;
-          *RC4*)
+          *RC4*|*RC2*)
                pr_svrty_high "$text"
                return 2
                ;;