2573a9b8b8
More SNI for NPN tests
...
Found another NPN test (for the case where server doesn't specify cipher order?) that wasn't using SNI.
Also found a comment saying proxies don't support NPN => removed `$PROXY` from all modified lines.
2016-07-11 14:37:20 +01:00
382d22648a
Server cipher order NPN tests should use SNI
...
I noticed the NPN parts of this test were not returning any ECDSA ciphers where I expected them to match the results of the immediately preceding TLS 1.2 test. Found it wasn't using SNI so my test server was using the default domain (snakeoil RSA certificate) instead of the tested domain (dual ECDSA/RSA certificates).
2016-07-11 14:15:50 +01:00
018468a670
more user friendly...
2016-07-09 14:24:38 +02:00
eb58598ca5
make it public, see #122
2016-07-08 11:40:17 +02:00
af4117aa7a
FIX #404
2016-07-08 11:25:41 +02:00
8c11334030
FIX #405
2016-07-08 11:15:41 +02:00
57bf01a360
Merge pull request #402 from dcooper16/poodle
...
Check for all CBC ciphers in Poodle test
2016-07-08 10:04:49 +02:00
9c92a866e0
Update Readme.md
2016-07-08 08:04:58 +02:00
345087c3a4
Merge pull request #403 from teward/patch-1
...
Missing closing parenteses in help output for --openssl
2016-07-06 20:45:45 +02:00
de05711e5a
Fix grammar issue in help output for --openssl
...
Missing a closing parentheses `)`.
2016-07-06 14:23:32 -04:00
ec6c0ce605
Check for all CBC ciphers in Poodle test
...
This PR should address issue #399 .
I created the list of ciphers using the CIPHERS_BY_STRENGTH file from PR #373 , making a list of all ciphers that had "CBC" in the RFC name and for which I had been able to find a corresponding OpenSSL name. Then, since that list contained more than 128 ciphers, I removed any ciphers from the list where the name ended in "-SHA256" or "-SHA384", as it is my understanding that those ciphers can only be used with TLS 1.2.
2016-07-06 10:52:54 -04:00
0217992553
fixed error where an URI in X509v3 Issuer Alternative Name was displayed and an URI in SAN
2016-07-05 00:08:51 +02:00
d2f2dab7fb
fix regression lf in CN
2016-07-05 00:02:34 +02:00
2bba19360f
see #401 , part 2
2016-07-04 23:52:52 +02:00
251e3f9a3b
Merge pull request #371 from dcooper16/fix_issue_276
...
Fix issue #276
2016-07-04 23:25:13 +02:00
0b5705fff4
FIX #258 , FIX #398
...
partly addressed: #246
2016-07-04 23:05:12 +02:00
f01bff973a
renamed function, better banner for logging
2016-07-04 13:59:39 +02:00
491a03233b
updating neat_list() to be faster and more compatible to openssl 1.1.0 with new chacha/poly ciphers
2016-07-03 22:35:21 +02:00
d5242c255e
FIX #384
2016-07-03 21:45:49 +02:00
37b33c9d79
Merge branch 'master' of github.com:drwetter/testssl.sh
2016-07-01 18:26:20 +02:00
32f249b0c2
enabling sockets for client testing per default #375
2016-07-01 18:26:05 +02:00
0d2797e5a0
travis ci icon
2016-07-01 14:58:54 +02:00
1e9863823c
Merge branch 'master' of github.com:drwetter/testssl.sh
2016-07-01 12:04:21 +02:00
2362cd8745
wording for GOST sig algos and keys
2016-07-01 12:03:46 +02:00
53dec241f1
Merge branch 'master' into fix_issue_276
2016-06-29 09:56:08 -04:00
aed0a8475a
Merge pull request #396 from seccubus/unit-tests
...
Pull request that helps to enable travis CI integrations
2016-06-29 09:53:51 +02:00
ec9276c17d
Serach and replace failure, fixed now
2016-06-29 00:38:51 +02:00
23ef87c134
Making tests work correctly
2016-06-29 00:35:52 +02:00
ac7dd4da79
CBC isn't done yet. Unit tests count themselves now
2016-06-29 00:24:57 +02:00
0e8f69e6ac
Merge branch 'master' into unit-tests
2016-06-29 00:16:36 +02:00
fa19ac168f
Be more verbose in your error testing
2016-06-29 00:15:32 +02:00
353756ffd6
We need dnsutils as well
2016-06-29 00:12:46 +02:00
2111008880
Install test dependancies
2016-06-29 00:09:12 +02:00
0a86f07e61
Lets get unit testing
2016-06-29 00:02:53 +02:00
6801279471
Additional tests
2016-06-28 23:59:36 +02:00
36d300b74e
add line when using sockets for client simulation
2016-06-28 12:21:50 +02:00
197ef27542
Merge pull request #386 from dcooper16/client_sim_sockets
...
Use sockets for client simulations
2016-06-28 11:40:19 +02:00
c5d680c38a
Merge pull request #392 from seccubus/unit-tests
...
Lets add some unit tests to testssl.sh - Using badssl.com work
2016-06-28 10:36:10 +02:00
a25a66ff49
Lets add some unit tests to testssl.sh - Using abdsll.com work
2016-06-27 16:49:54 +02:00
be85fbf2b7
Update IE client simulation data
...
Change client data for IE 8-10 and IE 11 to match ssllabs.
2016-06-24 16:14:41 -04:00
799c6a5fd0
Handle missing $MAPPING_FILE_RFC
...
Changed code for run_client_simulation() so that cipher is output when sockets are used even if $MAPPING_FILE_RFC is missing. Also, updated the client data.
2016-06-24 15:48:40 -04:00
f2077b7726
Merge branch 'master' into fix_issue_276
2016-06-24 13:23:07 -04:00
0e58e272f8
Merge branch 'master' into client_sim_sockets
...
Conflicts:
testssl.sh
2016-06-24 13:18:25 -04:00
5cb4b722b4
in client simulation it should be TLSv1.0 instead of TLSv1.0
2016-06-24 19:01:00 +02:00
93204937c5
FIX #376
2016-06-23 19:42:26 +02:00
dd8788d670
Merge branch 'master' into fix_issue_276
2016-06-23 09:42:18 -04:00
bebdc3c70e
Merge branch 'master' into client_sim_sockets
2016-06-23 09:24:54 -04:00
68353db42b
polishing #382
2016-06-23 14:33:26 +02:00
31c8979d41
Merge pull request #382 from seccubus/mass_and_file_out
...
Allow the file output feature and mass_test feature to work together
2016-06-23 13:40:09 +02:00
b5b9dd8712
Merge pull request #387 from bad/master
...
porting to NetBSD
2016-06-23 12:15:02 +02:00
