Commit Graph

3921 Commits

Author SHA1 Message Date
Dirk 1c5870e3e3 typo, fix from Stefan Stidl (thx!) 2015-09-03 12:17:32 +02:00
Dirk 489baa1299 unitize programming styles: ${var} --> $var, double square brackets instead of single 2015-09-03 12:14:47 +02:00
Dirk Wetter 73b61469bf Merge pull request #186 from anoma/anoma-typo-patch-1
Typo. Inconsistent CVE string format
2015-09-03 10:25:03 +02:00
anoma 6b22851104 Typo. Inconsistent CVE string format
Trivial typo. All other CVE outputs are in the form CVE-XXXX-YYYY
2015-09-03 09:10:06 +01:00
Dirk Wetter 90930a2f78 - changed return code if someone dares to use dash as it hiccups
- catch users try to use sh instead of real bash (#184),  see http://www.gnu.org/software/bash/manual/bashref.html#Bash-POSIX-Mode)
2015-09-02 12:56:03 +02:00
Dirk Wetter 00131e2a66 Merge pull request #180 from jpluimers/master
Fixes #164 Mac OS X Darwin binaries with zlib support
2015-08-30 12:41:46 +02:00
Dirk Wetter 45eb3ed662 better phrasing for LOGJAM, see #181 2015-08-28 17:43:38 +02:00
Dirk Wetter 90ead7a301 FIX #183 2015-08-28 17:06:07 +02:00
Dirk Wetter aa175f2c56 Merge branch 'master' of github.com:drwetter/testssl.sh 2015-08-28 16:46:49 +02:00
Dirk Wetter 412fb6fb05 FIX #182 2015-08-28 16:46:28 +02:00
Dirk Wetter 8d0dccc31a Update Readme.md 2015-08-28 15:09:53 +02:00
Dirk Wetter 9b718d39d0 - removed VERBERR (is now DEBUG=2)
- hex2dec uses now internal echo instead of printf (which has problems with some chars if unexpected content if not properly used)
2015-08-28 14:59:04 +02:00
Dirk b5818f6034 - FIX $177
- some by-catches whle shellchecking
- minor cleanups
2015-08-28 00:15:51 +02:00
Jeroen Pluimers 6f5cf726e9 Merge branch 'master' of https://github.com/drwetter/testssl.sh 2015-08-27 23:06:06 +02:00
Jeroen Pluimers 06572c521f Mac OS X Darwin openssl binaries with zlib support 2015-08-27 23:03:59 +02:00
Dirk c102bb6712 micro fix for the ESC code orgination fron tput test 2015-08-27 20:39:20 +02:00
Dirk 0d9370237c - FIX #172
- labeled TLS_FALLBACK_SCSV as experimental, to be improved in next release (remarks in code)
- removed experimental from FREAK check
- separated headerfile from errorfile, TLS handshake oids were sometimes misinterpreted as IPv4 addreses in header
- bumped up rc version
- linefeeds
2015-08-27 11:25:12 +02:00
Dirk Wetter c93dc01b41 better service detection, dedicated line for NNTP and certificate stuff redirected to ERRFILE 2015-08-26 20:06:53 +02:00
Dirk Wetter 838112e6d2 - LibreSSL compatibility: recent pull spits out an error if cnf file isn't found (oh well) ==> introduction of #ERRFILE, good idea anyway
- commented what I wanted to achieve with the colors
- code cleanups
2015-08-24 23:50:03 +02:00
Dirk aa91990fb3 - fix bug where a host name like AAA.BBB.CCC.DDD.in-addr.arpa.DOMAIN.TLS was taken as an ipv4 address
- freebsd 9 supports now also colors with setaf, Darwin?
- correct indentation of help
- improved parsing in command line so that where a distinct option is required it is also tested in the 1st place
- removed -q in help (deprecated as we might want to use it for other things in the future)
- fix: if $PWD/openssl was a dir it bailed out
- cleanup of fatal errors ==> provide ONE function
2015-08-24 22:17:35 +02:00
Dirk 83bf9067aa FIX #167 (# of certificates provided) 2015-08-23 21:16:34 +02:00
Dirk Wetter 6baf5e377c - sanitize '%' in general output function, avoids hiccups in url encoded strings
- FIX #178 (Security headers only key in green, not value)
- CSP rule for facebook hast 127.0.0.1 which is labeled as IP address
2015-08-21 18:10:45 +02:00
Dirk Wetter 87cef93b6c - more solid parsing for HPKP header (FIX #163)
- X-UA-Compatible is now an "other" flag and key won't be swallowed
2015-08-21 12:43:10 +02:00
Dirk Wetter 394bde8ff5 output FIX for multiple CRLs (#165) 2015-08-21 10:47:29 +02:00
Dirk Wetter 4862ece267 Merge pull request #175 from PeterMosmans/typo-fix
Fixes #174
2015-08-18 21:30:50 +02:00
Peter Mosmans cd4ba60f16 Fixes #174
Thanks to Ligushka
2015-08-18 16:07:24 +02:00
Dirk Wetter 85268360c0 Update CREDITS.md 2015-08-18 10:15:15 +02:00
Dirk Wetter ab1de25238 Merge pull request #173 from jonorossi/darwin-san-fix
Fix subject alternative name on darwin
2015-08-18 10:13:28 +02:00
Jonathon Rossi e8cbf1a699 Fix subject alternative name on darwin 2015-08-18 17:15:17 +10:00
Dirk 9afab04012 FIX #162 (leading space for rp banner and missing lf) 2015-08-17 20:13:52 +02:00
Dirk 405b0f10bf FIX #161 + small improvemnet on rengotiation 2015-08-15 21:33:17 +02:00
Dirk e3fcd786f7 - FIX #160 -- removed code from #27
- bumped up version to 2.6rc2
2015-08-15 18:48:49 +02:00
Dirk Wetter 8bc2909899 updated from git log for upcoming release 2015-08-14 13:34:45 +02:00
Dirk Wetter 58a1c1c1da - expiration variables tunable via ENV
- cleanups expire section
2015-08-13 16:56:12 +02:00
Dirk Wetter 2c12e7d20e Merge pull request #159 from tkaehn/fix-expiration-check
Fix certificate expiration check
2015-08-13 10:35:19 +02:00
Thomas Kähn 8963916b3b Fix certificate expiration check 2015-08-12 18:28:50 +02:00
Dirk Wetter 00c7fc2ccb Update CREDITS.md 2015-08-12 14:54:22 +02:00
Dirk Wetter 719536a44e FIX: Dilyans bug where a STARTTLS servive runs on a different port 2015-08-12 13:58:45 +02:00
Dirk 5bc6e5fda9 - if a record is local host it is shown now
- also look in etc hosts for MSYS2
- cosmetic improvements
2015-08-12 00:17:28 +02:00
Dirk Wetter 81b158431f NEW: showing # of detected pinned keys (HPKP) 2015-08-10 15:58:56 +02:00
Dirk Wetter 72aa8add5c FIX for missing CN (e.g. cloudflare) 2015-08-10 15:17:42 +02:00
Dirk Wetter e6f0f79157 - FIX: rDNS ignores CNAME now
- some code beautified
2015-08-10 14:47:11 +02:00
Dirk aa2b33fdb4 rp header fine tuning 2015-08-08 13:42:31 +02:00
Dirk dc60d9360a reverse proxy banner alignment 2015-08-08 13:37:05 +02:00
Dirk 56e6f90308 FIX #158 (pagesspeed header was identified as IPv4 addr) 2015-08-08 10:20:13 +02:00
Dirk Wetter 70ff293fb7 - fix for #156
- reverting #27. Catch is the functions are being initiated at a fixed time instead of while calling. This conflicts with the --color option which is done late. Other solution?
2015-08-05 11:31:55 +02:00
Dirk Wetter be7e03cfdf Update Readme.md 2015-08-04 13:44:54 +02:00
Dirk Wetter ab37fad6e6 Update CREDITS.md 2015-08-04 10:33:48 +02:00
Dirk Wetter 648439b6c3 Merge pull request #155 from jpluimers/master
OS X builds with as many ciphers as possible without generating errors. Should fix #127
2015-08-03 19:17:47 +02:00
Jeroen Pluimers 6e36a484d3 OS X builds with:
cc_arguments_common="no-shared enable-static-engine no-zlib-dynamic enable-zlib enable-ssl2 enable-ssl3 enable-ssl-trace enable-rc2 enable-rc5 enable-gost enable-cms enable-md2 enable-mdc2 enable-ec enable-ec2m enable-ecdh enable-ecdsa enable-seed enable-camellia enable-idea enable-rfc3779 experimental-jpake -DOPENSSL_USE_BUILD_DATE"
   cc_arguments_x86="$cc_arguments_common"
   cc_arguments_x64="$cc_arguments_common enable-ec_nistp_64_gcc_128 "
Note: no -DTEMP_GOST_TLS yet.
2015-08-02 23:22:57 +02:00