From d711548789e97aa5d073c1203b48cb8edaed7df6 Mon Sep 17 00:00:00 2001 From: Dirk Wetter Date: Mon, 26 Jan 2015 12:37:00 +0100 Subject: [PATCH 1/3] Update Readme.md --- Readme.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/Readme.md b/Readme.md index 2260477..09de09e 100644 --- a/Readme.md +++ b/Readme.md @@ -1,11 +1,11 @@ ## Intro -testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as some cryptographic flaws. It's designed to provide clear output for a "is this good or bad" decision. +`testssl.sh` is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as some cryptographic flaws. It's designed to provide clear output for a "is this good or bad" decision. -It is working on every Linux distribution out of the box with the limitations of disabled features from the openssl client. It also works on BSD and other Unices out of the box, supposed they have/bin/bash and standard tools like sed and awk installed. MacOS X and Windows (using MSYS2) work too. +It is working on every Linux distribution out of the box with the limitations of disabled features from the openssl client. It also works on BSD and other Unices out of the box, supposed they have `/bin/bash` and standard tools like sed and awk installed. MacOS X and Windows (using MSYS2) work too. -On github you will find in the master branch the development version of the software -- with new features and maybe some bugs. For the stable version and a more thorough description of the software please see http://testssl.sh/ . +On github you will find in the master branch the development version of the software -- with new features and maybe some bugs. For the stable version and a more thorough description of the software please see [testssl.sh](https://testssl.sh/ "Go to the site with the stable version and more documentation"). New features in this release are / will be From 368a6ba7a05da79dc31bc42f2cde8c1c703a3a0b Mon Sep 17 00:00:00 2001 From: The Gitter Badger Date: Tue, 27 Jan 2015 22:45:51 +0000 Subject: [PATCH 2/3] Added Gitter badge --- Readme.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/Readme.md b/Readme.md index 09de09e..93b01ec 100644 --- a/Readme.md +++ b/Readme.md @@ -1,6 +1,8 @@ ## Intro +[![Gitter](https://badges.gitter.im/Join%20Chat.svg)](https://gitter.im/drwetter/testssl.sh?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge&utm_content=badge) + `testssl.sh` is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as some cryptographic flaws. It's designed to provide clear output for a "is this good or bad" decision. It is working on every Linux distribution out of the box with the limitations of disabled features from the openssl client. It also works on BSD and other Unices out of the box, supposed they have `/bin/bash` and standard tools like sed and awk installed. MacOS X and Windows (using MSYS2) work too. From 5aaa75e4d43ebc10ff14c388d86e056e2cdb8377 Mon Sep 17 00:00:00 2001 From: NV Date: Wed, 28 Jan 2015 14:17:27 +0900 Subject: [PATCH 3/3] Fix GOST handling in LibreSSL --- testssl.sh | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/testssl.sh b/testssl.sh index f3a3801..1fb6a87 100755 --- a/testssl.sh +++ b/testssl.sh @@ -2019,10 +2019,12 @@ cleanup () { # for now only GOST engine initialize_engine(){ - if uname -s | grep -q BSD || ! $OPENSSL engine gost -vvvv -t -c 2>&1 >/dev/null; then + if uname -s | grep -q BSD || ! $OPENSSL engine gost -vvvv -t -c >/dev/null 2>&1; then litemagenta "No engine or GOST support via engine with your $OPENSSL"; outln "\n" return 1 - else + elif echo $osslver | grep -q LibreSSL; then + return 1 + else if [ ! -z "$OPENSSL_CONF" ]; then litemagenta "For now I am providing the config file in to have GOST support"; outln else