Update Readme.md

This commit is contained in:
Dirk Wetter 2017-02-13 09:33:03 +01:00 committed by GitHub
parent 7d6f1eb46f
commit c252d5ab28
1 changed files with 12 additions and 8 deletions

View File

@ -36,14 +36,13 @@ and more documentation") or https://github.com/drwetter/testssl.sh/wiki/Usage-Do
#### Compatibility #### Compatibility
testssl.sh is working on every Linux/BSD distribution out of the box with testssl.sh is working on every Linux/BSD distribution out of the box. In 2.9dev most
some limitations of disabled features from the openssl client -- some of the limitations of disabled features from the openssl client are gone due to bash-socket-based
workarounds are done with bash-socket-based checks. It also works on other checks. testssl.sh also works on otherunixoid system out of the box, supposed they have
unixoid system out of the box, supposed they have `/bin/bash` and standard `/bin/bash` and standard tools like sed and awk installed. System V needs to have GNU versions
tools like sed and awk installed. MacOS X and Windows (using MSYS2 or of grep and sed installed. MacOS X and Windows (using MSYS2 or cygwin) work too. OpenSSL version
cygwin) work too. OpenSSL version >= 1 is a must. OpenSSL version >= 1.0.2 >= 1 is a must. OpenSSL version >= 1.0.2 is needed for better LOGJAM checks and to
is needed for better LOGJAM checks and to display bit strengths for key display bit strengths for key exchanges.
exchanges.
Update notification here or @ [twitter](https://twitter.com/drwetter). Update notification here or @ [twitter](https://twitter.com/drwetter).
@ -56,6 +55,11 @@ Update notification here or @ [twitter](https://twitter.com/drwetter).
* testing 359 default ciphers (``testssl.sh -e``) with a mixture of sockets and openssl. Same speed as with openssl only but addtional ciphers such as post-quantum ciphers, new CHAHA20/POLY1305, CamelliaGCM etc. * testing 359 default ciphers (``testssl.sh -e``) with a mixture of sockets and openssl. Same speed as with openssl only but addtional ciphers such as post-quantum ciphers, new CHAHA20/POLY1305, CamelliaGCM etc.
* finding more TLS extensions via sockets * finding more TLS extensions via sockets
* TLS Supported Groups Registry (RFC 7919), key shares extension * TLS Supported Groups Registry (RFC 7919), key shares extension
* using bash sockets where ever possible
* LUCKY13 and SWEET32 checks
* LOGJAM: now checking also for known DH parameters
* Check for CAA RR
* better formatting of output
#### Features planned in 2.9dev #### Features planned in 2.9dev