Dirk
1c5870e3e3
typo, fix from Stefan Stidl (thx!)
2015-09-03 12:17:32 +02:00
Dirk
489baa1299
unitize programming styles: ${var} --> $var, double square brackets instead of single
2015-09-03 12:14:47 +02:00
Dirk Wetter
73b61469bf
Merge pull request #186 from anoma/anoma-typo-patch-1
...
Typo. Inconsistent CVE string format
2015-09-03 10:25:03 +02:00
anoma
6b22851104
Typo. Inconsistent CVE string format
...
Trivial typo. All other CVE outputs are in the form CVE-XXXX-YYYY
2015-09-03 09:10:06 +01:00
Dirk Wetter
90930a2f78
- changed return code if someone dares to use dash as it hiccups
...
- catch users try to use sh instead of real bash (#184 ), see http://www.gnu.org/software/bash/manual/bashref.html#Bash-POSIX-Mode )
2015-09-02 12:56:03 +02:00
Dirk Wetter
00131e2a66
Merge pull request #180 from jpluimers/master
...
Fixes #164 Mac OS X Darwin binaries with zlib support
2015-08-30 12:41:46 +02:00
Dirk Wetter
45eb3ed662
better phrasing for LOGJAM, see #181
2015-08-28 17:43:38 +02:00
Dirk Wetter
90ead7a301
FIX #183
2015-08-28 17:06:07 +02:00
Dirk Wetter
aa175f2c56
Merge branch 'master' of github.com:drwetter/testssl.sh
2015-08-28 16:46:49 +02:00
Dirk Wetter
412fb6fb05
FIX #182
2015-08-28 16:46:28 +02:00
Dirk Wetter
8d0dccc31a
Update Readme.md
2015-08-28 15:09:53 +02:00
Dirk Wetter
9b718d39d0
- removed VERBERR (is now DEBUG=2)
...
- hex2dec uses now internal echo instead of printf (which has problems with some chars if unexpected content if not properly used)
2015-08-28 14:59:04 +02:00
Dirk
b5818f6034
- FIX $177
...
- some by-catches whle shellchecking
- minor cleanups
2015-08-28 00:15:51 +02:00
Jeroen Pluimers
6f5cf726e9
Merge branch 'master' of https://github.com/drwetter/testssl.sh
2015-08-27 23:06:06 +02:00
Jeroen Pluimers
06572c521f
Mac OS X Darwin openssl binaries with zlib support
2015-08-27 23:03:59 +02:00
Dirk
c102bb6712
micro fix for the ESC code orgination fron tput test
2015-08-27 20:39:20 +02:00
Dirk
0d9370237c
- FIX #172
...
- labeled TLS_FALLBACK_SCSV as experimental, to be improved in next release (remarks in code)
- removed experimental from FREAK check
- separated headerfile from errorfile, TLS handshake oids were sometimes misinterpreted as IPv4 addreses in header
- bumped up rc version
- linefeeds
2015-08-27 11:25:12 +02:00
Dirk Wetter
c93dc01b41
better service detection, dedicated line for NNTP and certificate stuff redirected to ERRFILE
2015-08-26 20:06:53 +02:00
Dirk Wetter
838112e6d2
- LibreSSL compatibility: recent pull spits out an error if cnf file isn't found (oh well) ==> introduction of #ERRFILE, good idea anyway
...
- commented what I wanted to achieve with the colors
- code cleanups
2015-08-24 23:50:03 +02:00
Dirk
aa91990fb3
- fix bug where a host name like AAA.BBB.CCC.DDD.in-addr.arpa.DOMAIN.TLS was taken as an ipv4 address
...
- freebsd 9 supports now also colors with setaf, Darwin?
- correct indentation of help
- improved parsing in command line so that where a distinct option is required it is also tested in the 1st place
- removed -q in help (deprecated as we might want to use it for other things in the future)
- fix: if $PWD/openssl was a dir it bailed out
- cleanup of fatal errors ==> provide ONE function
2015-08-24 22:17:35 +02:00
Dirk
83bf9067aa
FIX #167 (# of certificates provided)
2015-08-23 21:16:34 +02:00
Dirk Wetter
6baf5e377c
- sanitize '%' in general output function, avoids hiccups in url encoded strings
...
- FIX #178 (Security headers only key in green, not value)
- CSP rule for facebook hast 127.0.0.1 which is labeled as IP address
2015-08-21 18:10:45 +02:00
Dirk Wetter
87cef93b6c
- more solid parsing for HPKP header ( FIX #163 )
...
- X-UA-Compatible is now an "other" flag and key won't be swallowed
2015-08-21 12:43:10 +02:00
Dirk Wetter
394bde8ff5
output FIX for multiple CRLs ( #165 )
2015-08-21 10:47:29 +02:00
Dirk Wetter
4862ece267
Merge pull request #175 from PeterMosmans/typo-fix
...
Fixes #174
2015-08-18 21:30:50 +02:00
Peter Mosmans
cd4ba60f16
Fixes #174
...
Thanks to Ligushka
2015-08-18 16:07:24 +02:00
Dirk Wetter
85268360c0
Update CREDITS.md
2015-08-18 10:15:15 +02:00
Dirk Wetter
ab1de25238
Merge pull request #173 from jonorossi/darwin-san-fix
...
Fix subject alternative name on darwin
2015-08-18 10:13:28 +02:00
Jonathon Rossi
e8cbf1a699
Fix subject alternative name on darwin
2015-08-18 17:15:17 +10:00
Dirk
9afab04012
FIX #162 (leading space for rp banner and missing lf)
2015-08-17 20:13:52 +02:00
Dirk
405b0f10bf
FIX #161 + small improvemnet on rengotiation
2015-08-15 21:33:17 +02:00
Dirk
e3fcd786f7
- FIX #160 -- removed code from #27
...
- bumped up version to 2.6rc2
2015-08-15 18:48:49 +02:00
Dirk Wetter
8bc2909899
updated from git log for upcoming release
2015-08-14 13:34:45 +02:00
Dirk Wetter
58a1c1c1da
- expiration variables tunable via ENV
...
- cleanups expire section
2015-08-13 16:56:12 +02:00
Dirk Wetter
2c12e7d20e
Merge pull request #159 from tkaehn/fix-expiration-check
...
Fix certificate expiration check
2015-08-13 10:35:19 +02:00
Thomas Kähn
8963916b3b
Fix certificate expiration check
2015-08-12 18:28:50 +02:00
Dirk Wetter
00c7fc2ccb
Update CREDITS.md
2015-08-12 14:54:22 +02:00
Dirk Wetter
719536a44e
FIX: Dilyans bug where a STARTTLS servive runs on a different port
2015-08-12 13:58:45 +02:00
Dirk
5bc6e5fda9
- if a record is local host it is shown now
...
- also look in etc hosts for MSYS2
- cosmetic improvements
2015-08-12 00:17:28 +02:00
Dirk Wetter
81b158431f
NEW: showing # of detected pinned keys (HPKP)
2015-08-10 15:58:56 +02:00
Dirk Wetter
72aa8add5c
FIX for missing CN (e.g. cloudflare)
2015-08-10 15:17:42 +02:00
Dirk Wetter
e6f0f79157
- FIX: rDNS ignores CNAME now
...
- some code beautified
2015-08-10 14:47:11 +02:00
Dirk
aa2b33fdb4
rp header fine tuning
2015-08-08 13:42:31 +02:00
Dirk
dc60d9360a
reverse proxy banner alignment
2015-08-08 13:37:05 +02:00
Dirk
56e6f90308
FIX #158 (pagesspeed header was identified as IPv4 addr)
2015-08-08 10:20:13 +02:00
Dirk Wetter
70ff293fb7
- fix for #156
...
- reverting #27 . Catch is the functions are being initiated at a fixed time instead of while calling. This conflicts with the --color option which is done late. Other solution?
2015-08-05 11:31:55 +02:00
Dirk Wetter
be7e03cfdf
Update Readme.md
2015-08-04 13:44:54 +02:00
Dirk Wetter
ab37fad6e6
Update CREDITS.md
2015-08-04 10:33:48 +02:00
Dirk Wetter
648439b6c3
Merge pull request #155 from jpluimers/master
...
OS X builds with as many ciphers as possible without generating errors. Should fix #127
2015-08-03 19:17:47 +02:00
Jeroen Pluimers
6e36a484d3
OS X builds with:
...
cc_arguments_common="no-shared enable-static-engine no-zlib-dynamic enable-zlib enable-ssl2 enable-ssl3 enable-ssl-trace enable-rc2 enable-rc5 enable-gost enable-cms enable-md2 enable-mdc2 enable-ec enable-ec2m enable-ecdh enable-ecdsa enable-seed enable-camellia enable-idea enable-rfc3779 experimental-jpake -DOPENSSL_USE_BUILD_DATE"
cc_arguments_x86="$cc_arguments_common"
cc_arguments_x64="$cc_arguments_common enable-ec_nistp_64_gcc_128 "
Note: no -DTEMP_GOST_TLS yet.
2015-08-02 23:22:57 +02:00