1
0
mirror of https://github.com/drwetter/testssl.sh.git synced 2025-07-30 01:21:44 +02:00
Commit Graph

4804 Commits

Author SHA1 Message Date
4ce91d7d61 Explain OSSL_SHORTCUT better, "automagically" is the word we wanted to use 2024-09-08 12:27:51 +02:00
c5b07e7d99 Make the client side security clearer for STARTTLS
... also in the man pages. See also .
2024-09-08 12:22:52 +02:00
be3e7651bb Merge pull request from drwetter/starttls_phrasing
Phrasing of reason for STARTTLS grading improved
2024-09-07 17:08:50 +02:00
3b85f53d52 added an accidently erased char 2024-09-07 16:15:03 +02:00
a1c67c0794 proper English 2024-09-07 16:03:53 +02:00
f9edaa7fe1 Phrasing of STARTTLS grading improved
... a a comment added in the desciption.

Unfortunately I couldn't get the line wrapping working.
2024-09-07 15:51:12 +02:00
30f80cf9b3 Merge pull request from drwetter/fix_1312
Fix 1312
2024-09-06 18:55:24 +02:00
9efe597a86 Merge pull request from drwetter/revert-2547-drwetter-patch-1
Revert "Update Dockerfile to leap 15.6"
2024-09-06 18:00:14 +02:00
bb7d9f4ac5 Revert "Update Dockerfile to leap 15.6" 2024-09-06 17:53:58 +02:00
733c2d31b7 Automagic with openssl and TLS 1.3-only host 2024-09-06 17:37:42 +02:00
52213d3072 Suppy documenation for TLS 1.3 only hosts
and the automagic wrt /usr/bin/openssl OPENSSL2 and OSSL_SHORTCUT
2024-09-06 17:32:53 +02:00
3d2bd5020c fix spellcheck 2024-09-06 13:00:27 +02:00
12bc15adc3 misc
- remove 1xLF in UI
- fix obsolete statment for OPENSSL2
2024-09-06 12:53:00 +02:00
becd310390 Address open UI problems for TLS 1.3 only hosts
While in 3.2 there was only a hint how to deal with TLS 1.3 only hosts, a restart
with --openssl=/usr/bin/openssl or setting of OSSL_SHORTCUT-true was required.

This PR changes the behavior: if an openssl version can be found in /usr/bin/openssl
(or SUPPLIED via OPENSSL2=/home/version/ofopenssl testssl <cmdline>) which
supports TLS 1.3 it switches automatically and informs the user that it has done so.
   This message is asynchonous and is implemented with a new function check_msg()
and a global OPEN_MSG, so that we maintain the formatting. Otherwise it would have
appeared between rDNS and service detection. Now it's nicely after service detection.
2024-09-06 12:47:03 +02:00
a20fd796e8 Merge pull request from drwetter/fix_2466
Trailing space after value in header is fine
2024-09-03 20:51:18 +02:00
031c2a55ec Merge pull request from drwetter/noCtrlCharInHeader
Remove crtl chars from HTTP header
2024-09-03 20:50:18 +02:00
3cd027e1f1 Merge pull request from drwetter/banner
Improve banner (3.2)
2024-09-03 19:27:46 +02:00
2b36b33112 Remove crtl chars from HTTP header
... which fixes 
2024-09-03 19:24:46 +02:00
30a33e9a6e Trailing space after value in header is fine
This fixes .
2024-09-03 19:10:29 +02:00
dbb8fc8013 Fix CI 2024-09-03 18:28:56 +02:00
408e8f84f4 modify issue template for bash version 2024-09-03 15:42:54 +02:00
5a1fd2623f Improve banner (3.2)
... for readability and bugs to be filed (fixes )

This PR defines a short string for the OpenSSL banner as some suppliers have made them (unnecessarily) long so that it won't fit nice in the banner anymore.

The banner also now omits the built line from openssl as for the user it is normally not important.
2024-09-03 15:40:55 +02:00
e59a0f202f Merge pull request from drwetter/drwetter-patch-1
Ignore Dockerfile.git
2024-09-03 12:46:28 +02:00
5becbd0625 Merge pull request from drwetter/drwetter-patch-2
Update Dockerfile.git
2024-09-03 12:46:05 +02:00
1443c62036 Ignore Dockerfile.git
... for CI run
2024-09-03 12:44:45 +02:00
e7c0173f8c Merge pull request from drwetter/drwetter-patch-1
Update to leap 15.6
2024-09-03 12:42:22 +02:00
79e199e736 Update Dockerfile.git
to use an up to date Alpine version
2024-09-03 12:41:09 +02:00
a9fcf443fa Update to leap 15.6
as EOL for 15.5 is not very far away
2024-09-02 17:52:27 +02:00
b132a26432 Merge pull request from NaN-KL/patch-1
Fix: Reporting (Not Ok) for ClientHello/ServerHello errors
2024-08-26 18:14:23 +02:00
4d70c7b82a Merge pull request from drwetter/fix_2542
fix typo
2024-08-26 10:40:35 +02:00
5eb829e6d6 fix typo 2024-08-26 10:38:37 +02:00
NaN
8a5d534b8a Update testssl.sh
Fix to be consistent in reporting (Not Ok) for ClientHello/ServerHello errors.
2024-08-23 14:19:09 -07:00
f3f6dae8c1 Merge pull request from drwetter/dependabot/github_actions/docker/build-push-action-6.7.0
Bump docker/build-push-action from 6.5.0 to 6.7.0
2024-08-14 16:29:53 +02:00
ecf671eec2 Bump docker/build-push-action from 6.5.0 to 6.7.0
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 6.5.0 to 6.7.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v6.5.0...v6.7.0)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-08-14 00:22:17 +00:00
009e358341 Merge pull request from drwetter/update_CAstores
Update Truststores
2024-07-23 12:11:54 +02:00
76902af3b8 update hashes 2024-07-23 11:35:49 +02:00
69c1a2fcb8 need to update hashes needs to be earlier 2024-07-23 11:35:16 +02:00
778aab0241 dos2unix 2024-07-23 11:34:38 +02:00
95ed863ac0 update MS CA root store 2024-07-23 10:42:14 +02:00
67f555e15b Merge pull request from drwetter/dependabot/github_actions/docker/login-action-3.3.0
Bump docker/login-action from 3.2.0 to 3.3.0
2024-07-23 10:06:09 +02:00
04280396f6 Merge pull request from drwetter/dependabot/github_actions/docker/setup-qemu-action-3.2.0
Bump docker/setup-qemu-action from 3.1.0 to 3.2.0
2024-07-23 10:05:27 +02:00
4499ef5e13 Merge pull request from drwetter/dependabot/github_actions/docker/build-push-action-6.5.0
Bump docker/build-push-action from 6.4.1 to 6.5.0
2024-07-23 10:05:06 +02:00
3b46abbe8e Bump docker/build-push-action from 6.4.1 to 6.5.0
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 6.4.1 to 6.5.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v6.4.1...v6.5.0)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-07-23 00:43:20 +00:00
02d5a11354 Bump docker/login-action from 3.2.0 to 3.3.0
Bumps [docker/login-action](https://github.com/docker/login-action) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/v3.2.0...v3.3.0)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-07-23 00:43:18 +00:00
f476c6392d Bump docker/setup-qemu-action from 3.1.0 to 3.2.0
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](https://github.com/docker/setup-qemu-action/compare/v3.1.0...v3.2.0)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-07-23 00:43:16 +00:00
fa9fe27ae6 Merge pull request from drwetter/fix_ipv6_ula_and_more
Fix IPv6 addresses
2024-07-22 23:31:37 +02:00
dd66449a45 Fix IPv6 addresses
Local and ULA and more IPv6 adresses were incorrectly filtered by ``awk '/^[0-9]/ { print $1 }'``
which searches in the first term for only numeric values.

The PR adds a-f and fixes  .
2024-07-22 21:07:50 +02:00
472eff85b1 Update Apple CA store
...and modify readme to reflect that the certificates are better to retrieve from GH
2024-07-22 17:08:18 +02:00
3a9c0aa8ed Update Truststores
- Mozilla: 2024-7-02
- Debian 12, ca-certificates from 20230311
- JDK 21.04

See also 

ToDo:
- Apple (https://opensource.apple.com/source/security_certificates/ doesnt exist anymore), github?
- MS
- Check old LE CA
- update hashes
- update Readme
2024-07-22 16:38:45 +02:00
1dbd9b8b78 Merge pull request from drwetter/dependabot/github_actions/docker/build-push-action-6.4.1
Bump docker/build-push-action from 6.4.0 to 6.4.1
2024-07-18 09:09:13 +02:00