Git
/
testssl.sh
mirror of https://github.com/drwetter/testssl.sh.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
4,526 Commits 14 Branches 29 Tags 179 MiB
Commit Graph

4526 Commits

Author SHA1 Message Date
Dirk Wetter bdeda3ab1c Bump version number 2023-10-09 22:51:44 +02:00
Dirk Wetter 4c6e8d79ed
Merge pull request #2414 from drwetter/update_certstore 
Update of certificate stores
 2023-10-09 22:20:42 +02:00
Dirk db175a8d51 Update of certificate stores 
Mozilla: 2023-08-22
Debian 10
JDK 22
Windows 10 22H2, Patched until 2023-10
Apple: 2023-10
 2023-10-09 22:08:48 +02:00
Dirk Wetter 8f295cb090
Merge pull request #2411 from ghen2/servicedetection 
Improve detection for POP3, IMAP and SMTP services.
 2023-10-07 15:09:11 +02:00
Geert Hendrickx e09e2c519c Fix SMTP detection. 
Extended regex was missing -E.
 2023-10-07 14:15:40 +02:00
Geert Hendrickx 16e6826225 Improve detection for POP3 and IMAP. 2023-10-07 13:56:39 +02:00
Dirk Wetter 2d8fbe2302
Merge pull request #2409 from drwetter/deprecate_sslnative 
Deprecate --ssl-native
 2023-10-07 10:44:52 +02:00
Dirk Wetter f0e1540bc6 add comment wrt #2403 2023-10-03 18:09:58 +02:00
Dirk Wetter 65da627820 better English 2023-10-03 15:56:18 +02:00
Dirk Wetter d46301e9f7 Deprecate --ssl-native 2023-10-03 15:51:58 +02:00
Dirk Wetter 96d82e2dff
Merge pull request #2407 from drwetter/fix_2403_Dockerfile_tar 
add busybox link to tar
 2023-10-03 15:17:05 +02:00
Dirk Wetter 39217ebe87 fix file instead of word 2023-10-03 15:14:19 +02:00
Dirk Wetter dc8721ca20 fix spellcheck issues 2023-10-03 15:14:19 +02:00
Dirk Wetter 4c90cf6d8b
Merge pull request #2408 from drwetter/fix_spelleckissues 
fix spellcheck issues
 2023-10-03 15:12:44 +02:00
Dirk Wetter 63cc603c92 fix file instead of word 2023-10-03 15:10:00 +02:00
Dirk Wetter 2acffa5a3f fix spellcheck issues 2023-10-03 15:06:46 +02:00
Dirk Wetter 8a1e90767b add busybox link to tar 
See #2403
 2023-10-03 15:00:04 +02:00
Dirk Wetter 7a60251ff9
Merge pull request #2400 from dekkers/doc-server-preferences 
Add --server-preference alias to documentation
 2023-09-21 20:57:20 +02:00
Jeroen Dekkers d5e3bc2e7a
Add --server-preference alias to documentation 2023-09-20 15:05:14 +02:00
Dirk Wetter 8e51a5c3d7
Merge pull request #2398 from drwetter/dependabot/github_actions/docker/setup-buildx-action-3 
Bump docker/setup-buildx-action from 2 to 3
 2023-09-13 10:31:30 +02:00
Dirk Wetter 44428af875
Merge pull request #2397 from drwetter/dependabot/github_actions/docker/login-action-3.0.0 
Bump docker/login-action from 2.2.0 to 3.0.0
 2023-09-13 10:31:02 +02:00
Dirk Wetter 2e549c1b7d
Merge pull request #2396 from drwetter/dependabot/github_actions/docker/metadata-action-5 
Bump docker/metadata-action from 4 to 5
 2023-09-13 10:30:42 +02:00
Dirk Wetter 1d626afabe
Merge pull request #2395 from drwetter/dependabot/github_actions/docker/build-push-action-5.0.0 
Bump docker/build-push-action from 4.2.1 to 5.0.0
 2023-09-13 10:30:19 +02:00
Dirk Wetter 13256e1e65
Merge pull request #2394 from drwetter/dependabot/github_actions/docker/setup-qemu-action-3.0.0 
Bump docker/setup-qemu-action from 2.2.0 to 3.0.0
 2023-09-13 10:29:58 +02:00
dependabot[bot] 5868562646
Bump docker/setup-buildx-action from 2 to 3 
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2 to 3.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/v2...v3)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-13 00:36:49 +00:00
dependabot[bot] 93a8e31497
Bump docker/login-action from 2.2.0 to 3.0.0 
Bumps [docker/login-action](https://github.com/docker/login-action) from 2.2.0 to 3.0.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/v2.2.0...v3.0.0)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-13 00:36:43 +00:00
dependabot[bot] 1064a3e3e8
Bump docker/metadata-action from 4 to 5 
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 4 to 5.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Upgrade guide](https://github.com/docker/metadata-action/blob/master/UPGRADE.md)
- [Commits](https://github.com/docker/metadata-action/compare/v4...v5)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-13 00:36:38 +00:00
dependabot[bot] b1986adea9
Bump docker/build-push-action from 4.2.1 to 5.0.0 
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 4.2.1 to 5.0.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v4.2.1...v5.0.0)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-13 00:36:32 +00:00
dependabot[bot] f8036fd8a0
Bump docker/setup-qemu-action from 2.2.0 to 3.0.0 
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 2.2.0 to 3.0.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](https://github.com/docker/setup-qemu-action/compare/v2.2.0...v3.0.0)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-13 00:36:27 +00:00
Dirk Wetter b7230d4b5d
Merge pull request #2392 from drwetter/dependabot/github_actions/docker/build-push-action-4.2.1 
Bump docker/build-push-action from 4.1.1 to 4.2.1
 2023-09-11 10:21:22 +02:00
dependabot[bot] 66cbce6a7d
Bump docker/build-push-action from 4.1.1 to 4.2.1 
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 4.1.1 to 4.2.1.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v4.1.1...v4.2.1)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-11 00:04:40 +00:00
Dirk Wetter 0791efbbda
Merge pull request #2390 from dcooper16/no_tls1 
Support OpenSSL with no TLSv1
 2023-09-08 11:24:00 +02:00
David Cooper 06e7205687 Support OpenSSL with no TLSv1 
RFC 8996, Deprecating TLS 1.0 and TLS 1.1, states that TLS clients MUST NOT send a TLS 1.0 or TLS 1.1 ClientHello and MUST respond to a TLS 1.0 or TLS 1.1 ServerHello with a "protocol_version" alert.

At the moment, all versions of OpenSSL support TLS 1.0, TLS 1.1, and TLS 1.2. However, TLS 1.0 and TLS 1.1 are disabled in LibreSSL 3.8.1 and it is possible to compile OpenSSL without support for these protocols (using the configure options no-tls1, no-tls1_1, and no-tls1_2). This commit adds support for versions of $OPENSSL that do not support TLS 1.0 or TLS 1.1.
 2023-09-07 07:26:48 -07:00
Dirk Wetter eaf6e40463
Merge pull request #2388 from drwetter/dependabot/github_actions/actions/checkout-4 
Bump actions/checkout from 3 to 4
 2023-09-05 13:55:33 +02:00
dependabot[bot] 74e3f967a4
Bump actions/checkout from 3 to 4 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-05 00:11:20 +00:00
Dirk Wetter 765b5855cc
Merge pull request #2386 from drwetter/strict_parsing_HSTS 
Strict parser for HSTS
 2023-08-28 19:55:57 +02:00
Dirk 01ab3acde5 Strict parser for HSTS 
As suggested in #2381 this parses strictly the value for mag-age
in the HSTS header line. While it is implemented only in run_hsts()
it could be extracted to a separate functioni in the future and used
elsewhere too.

The improvement is more strict and catches e.g. '==' signs and issues
a warning. See https://www.rfc-editor.org/rfc/rfc6797#section-6.1.1 .

Also it is picky regarding quotes now which are only allowed enclosing
the value.
 2023-08-28 18:33:41 +02:00
Dirk Wetter c55207d45c
Merge pull request #2385 from drwetter/hide_fast 
Hide --fast option in help() and issue a warning when it's used
 2023-08-28 18:26:36 +02:00
Dirk Wetter fc0aeaafcd
Merge pull request #2384 from drwetter/OPENSSL2_HAS_TLS_1_3 
Introducing variable OPENSSL2_HAS_TLS_1_3
 2023-08-28 18:26:20 +02:00
Dirk 0fcddff1cd Warn when using --fast 
... in the terminal only for now.
 2023-08-28 16:08:04 +02:00
Dirk d19675136a Deprecating $FAST / --fast 
As this option shows inconsistencies / wrong results and a fix would require
too much work at this moment this option is being hidden from the help. It
wasn't in the ~/doc .

See #849 , #2382, #1732 etc.
 2023-08-28 15:53:02 +02:00
Dirk 79577a84eb Introducing variable OPENSSL2_HAS_TLS_1_3 
If we run with supplied binary AND /usr/bin/openssl supports TLS 1.3
we now have a variable OPENSSL2_HAS_TLS_1_3 which is set to true.

It can be used for subsequent changes where we need TLS 1.3 for or
where it would be better to use TLS 1.3.
 2023-08-28 15:42:17 +02:00
Dirk Wetter 1e7219f344
Merge pull request #2383 from ghen2/grep-3.8 
Fix another grep-3.8 warning on needlessly escaped exclamation mark.
 2023-08-28 14:38:18 +02:00
Geert Hendrickx 38a09d342c
Fix another grep-3.8 warning on needlessly escaped exclamation mark. 
See also #2241 and #2242.
 2023-08-28 13:55:46 +02:00
Dirk Wetter 27c77071eb
Merge pull request #2380 from WtfJoke/removeOutdatedDockerImageRefere 
Remove reference to outdated docker image
 2023-08-12 13:12:35 +02:00
Manuel b48033e626
Remove outdated docker image 
The docker image over at https://quay.io/repository/jumanjiman is not maintained anymore.  The current version is 3 years old and has various security vulnerabilities, see https://quay.io/repository/jumanjiman/testssl/manifest/sha256:dea0446320f550acac1dfd1f2c592d43b526b737a3d9406388d636cb477053d6?tab=vulnerabilities.
 2023-08-10 10:30:16 +02:00
Dirk Wetter c888475b2c
Merge pull request #2377 from drwetter/3.1dev_to_3.2_references 
change references from 3.1dev to 3.2
 2023-07-31 17:15:15 +02:00
Dirk 2067ac8123 Fall back to heise.de 
.. to scan.

It worked in a few examples locally. Other hosts I tried so far weren't
available anymore (like scanme.nmap.org). In order to reduce the burden
we scan now only during PRs.
 2023-07-31 16:34:56 +02:00
Dirk 15b7f7b403 Stop using deprecated OS 2023-07-31 14:03:57 +02:00
Dirk fc14a02035 Changed heise.de to example.com as sometimes we're blocked 2023-07-31 13:44:35 +02:00