Commit Graph

4180 Commits

Author SHA1 Message Date
Mark Felder c83e1b98e2 Merge branch 'master' of github.com:feld/testssl.sh 2015-03-13 15:12:45 -05:00
Mark Felder 8ad1cca0ab Remove useless kittens 2015-03-13 15:10:36 -05:00
Mark Felder 4cdc89aa61 Revert to 2>&1 > /dev/null order because it isn't behaving correctly. 2015-03-13 14:56:30 -05:00
Mark Felder 59ed025f36 Replace expr with $(( ))
https://github.com/koalaman/shellcheck/wiki/SC2003
2015-03-13 14:54:36 -05:00
Mark Felder 73202da2fd Fix missing single quote 2015-03-13 14:26:02 -05:00
Mark Felder b7b88a03e7 Fix order of the redirect
https://github.com/koalaman/shellcheck/wiki/SC2069
2015-03-13 10:00:14 -05:00
Mark Felder 305fcca2ae Replace backticks with $(..)
https://github.com/koalaman/shellcheck/wiki/SC2006
2015-03-13 09:52:39 -05:00
Dirk b5a568da62 - @feld 2015-03-13 12:21:06 +01:00
Dirk c1ca5a641b - FIX garbled output for servers with a TLS reply on SSLv2 socket call 2015-03-13 12:20:19 +01:00
Dirk Wetter 74d984cebc Merge pull request #72 from feld/feld
Minor optimizations to reduce unnecessary forking
2015-03-13 11:00:52 +01:00
Mark Felder f037a3f811 Minor optimizations to redunce unnecessary forking 2015-03-11 12:13:38 -05:00
Dirk d8d8318f6d FIX for #71 (proper workaround for lastpipe in rc4, pfs, and cbc) 2015-03-09 08:07:45 +01:00
Dirk 77e28922c1 - NEW: proper check for freak CVE-2015-0204
- NEW: check for number of keys for hpkp
- cleanup hsts+hpkp
2015-03-07 09:51:55 +01:00
Dirk f23904b35f - MX record: the lower the # the higher the priority (thx, rechi) 2015-03-03 07:21:30 +01:00
Dirk 77ed44207c - see #41 2015-03-02 14:44:02 +01:00
Dirk 55e8908234 - finalize mx records, FIX: #41 2015-03-02 14:42:28 +01:00
Dirk Wetter 2614c093d7 Merge pull request #66 from Rechi/master
Check MX Records (#41)
2015-03-02 14:13:33 +01:00
Dirk 37fa44cecf - remark about rc4 rfc 2015-03-02 14:09:34 +01:00
Dirk Wetter 3f55de1483 Update Readme.md 2015-03-02 13:59:45 +01:00
Rechi 81afa43755 Check MX Records (#41) 2015-02-28 14:12:58 +01:00
Dirk 29214c7a1f - better detection for ssl poodle
- change of shorticut from zero to letter o
2015-02-27 21:21:39 +01:00
Dirk Wetter 87f821e390 Merge pull request #65 from schuetzm/fix-nrsaved
Don't let error message slip through when no certs have been downloaded
2015-02-24 18:28:09 +01:00
Marc Schütz 274ee394e8 Don't let error message slip through when no certs have been downloaded 2015-02-24 18:10:28 +01:00
Dirk Wetter 868c813055 Merge pull request #64 from PeterMosmans/spellingfix
FIX: minor spelling issue
2015-02-24 10:03:32 +01:00
Peter Mosmans 5440b24b92 FIX: minor spelling issue 2015-02-24 14:57:43 +10:00
Dirk 8aa8254c2d - FIX #62 (CentOS 7/RHEL: engine failure), was not usable b4 2015-02-23 10:40:10 +01:00
Dirk d0d7bb47e2 - FIXED: #47 ("double" linefeed if RFC mapping file is not present) 2015-02-22 23:05:40 +01:00
Dirk e2448ea95d - NEW: tells how many certificates provides (and grabs them with DEBUG=1)
- COLOR for no cipher order is red now
- "VULNERABLE" comes now always with "NOT ok"
2015-02-21 11:47:12 +01:00
Dirk 1be281c404 - FIXED: #38, new openssl from Peter Mosmans makes the workaround unneccessary 2015-02-21 10:46:30 +01:00
Dirk a255462812 - to tell the difference between the sets of binaries 2015-02-21 10:39:27 +01:00
Dirk bacb3b69ba - FIXED: #38, new openssl from peter mosmans makes the workaround unneccessary 2015-02-21 10:38:04 +01:00
Dirk Wetter cacb200049 Update Readme.md 2015-02-15 14:10:11 +01:00
Dirk b261c1079a - Fix #55 (302 detection for URL) 2015-02-15 14:00:13 +01:00
Dirk f203b8b299 - Fix #46 (preload lists HPKP and HSTS)
- word match for includeSubDomains (useful if one specified the keyword wrong)
2015-02-15 13:37:44 +01:00
Dirk b0a40ae1e8 - FIX #60: mod_security CRS doesn't complain anymore 2015-02-15 13:14:11 +01:00
Dirk ab48c66f74 - certificate sha2 fingerprint added (#59, @@kyhwana)
- sha1 fp: removed colons as long serials after it look ugly (lf)
2015-02-15 12:58:51 +01:00
Dirk e5a015b842 - workaround for issue #58, same in http_header
- FIX: if a web site returned IMAP e.g. in HTML code it may have led to the assumption IMAP is the service ;-/
2015-02-13 16:01:46 +01:00
Dirk d15d5b0c6f - FIX regression: CRIME check
- FIX: port ended up sometimes as URL part
- also if it runs http a line is displayed as confirmation that HTTP was detected
2015-02-12 13:40:53 +01:00
Dirk db99cc8c0c - new build with proper banner string 2015-02-12 11:12:49 +01:00
Dirk Wetter 7d6adee53f Update Readme.md 2015-02-12 10:50:52 +01:00
Dirk Wetter bc1cf841e3 Update Readme.md 2015-02-12 09:45:26 +01:00
Dirk d9e4873fda - WORKAROUND for bug in PeterMosmans OPENSSL chacha/poly version: not testing EXPORT40/EXPORT then 2015-02-12 09:32:47 +01:00
Dirk d98aa626e7 - NEW: check for Secure Client-Initiated Renegotiation
- debugging #1: PS4 and debugme
- debugging statement tmpfile_handle where missing #2
2015-02-11 09:43:04 +01:00
Dirk Wetter c80fc50728 Update Readme.md 2015-02-10 13:18:02 +01:00
Dirk d4c3266486 - sha2 like mozilla 2015-02-10 12:43:08 +01:00
Dirk 32ca73f982 Merge branch 'master' of github.com:drwetter/testssl.sh 2015-02-10 12:40:14 +01:00
Dirk Wetter d5c4aca6f0 Update Readme.md 2015-02-10 12:39:54 +01:00
Dirk Wetter 30b7390654 Update Readme.md 2015-02-10 12:39:20 +01:00
Dirk Wetter bbb832ae59 Update Readme.md 2015-02-10 12:39:02 +01:00
Dirk 1e75ac8be3 - vanilla as a workaround for bug #38 2015-02-10 12:37:03 +01:00