Git
/
testssl.sh
mirror of https://github.com/drwetter/testssl.sh.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
1,159 Commits 14 Branches 30 Tags 204 MiB
Commit Graph

1159 Commits

Author SHA1 Message Date
Dirk b5818f6034 - FIX $177 
- some by-catches whle shellchecking
- minor cleanups
 2015-08-28 00:15:51 +02:00
Jeroen Pluimers 6f5cf726e9 Merge branch 'master' of https://github.com/drwetter/testssl.sh 2015-08-27 23:06:06 +02:00
Jeroen Pluimers 06572c521f Mac OS X Darwin openssl binaries with zlib support 2015-08-27 23:03:59 +02:00
Dirk c102bb6712 micro fix for the ESC code orgination fron tput test 2015-08-27 20:39:20 +02:00
Dirk 0d9370237c - FIX #172 
- labeled TLS_FALLBACK_SCSV as experimental, to be improved in next release (remarks in code)
- removed experimental from FREAK check
- separated headerfile from errorfile, TLS handshake oids were sometimes misinterpreted as IPv4 addreses in header
- bumped up rc version
- linefeeds
 2015-08-27 11:25:12 +02:00
Dirk Wetter c93dc01b41 better service detection, dedicated line for NNTP and certificate stuff redirected to ERRFILE 2015-08-26 20:06:53 +02:00
Dirk Wetter 838112e6d2 - LibreSSL compatibility: recent pull spits out an error if cnf file isn't found (oh well) ==> introduction of #ERRFILE, good idea anyway 
- commented what I wanted to achieve with the colors
- code cleanups
 2015-08-24 23:50:03 +02:00
Dirk aa91990fb3 - fix bug where a host name like AAA.BBB.CCC.DDD.in-addr.arpa.DOMAIN.TLS was taken as an ipv4 address 
- freebsd 9 supports now also colors with setaf, Darwin?
- correct indentation of help
- improved parsing in command line so that where a distinct option is required it is also tested in the 1st place
- removed -q in help (deprecated as we might want to use it for other things in the future)
- fix: if $PWD/openssl was a dir it bailed out
- cleanup of fatal errors ==> provide ONE function
 2015-08-24 22:17:35 +02:00
Dirk 83bf9067aa FIX #167 (# of certificates provided) 2015-08-23 21:16:34 +02:00
Dirk Wetter 6baf5e377c - sanitize '%' in general output function, avoids hiccups in url encoded strings 
- FIX #178 (Security headers only key in green, not value)
- CSP rule for facebook hast 127.0.0.1 which is labeled as IP address
 2015-08-21 18:10:45 +02:00
Dirk Wetter 87cef93b6c - more solid parsing for HPKP header (FIX #163) 
- X-UA-Compatible is now an "other" flag and key won't be swallowed
 2015-08-21 12:43:10 +02:00
Dirk Wetter 394bde8ff5 output FIX for multiple CRLs (#165) 2015-08-21 10:47:29 +02:00
Dirk Wetter 4862ece267 Merge pull request #175 from PeterMosmans/typo-fix 
Fixes #174
 2015-08-18 21:30:50 +02:00
Peter Mosmans cd4ba60f16 Fixes #174 
Thanks to Ligushka
 2015-08-18 16:07:24 +02:00
Dirk Wetter 85268360c0 Update CREDITS.md 2015-08-18 10:15:15 +02:00
Dirk Wetter ab1de25238 Merge pull request #173 from jonorossi/darwin-san-fix 
Fix subject alternative name on darwin
 2015-08-18 10:13:28 +02:00
Jonathon Rossi e8cbf1a699 Fix subject alternative name on darwin 2015-08-18 17:15:17 +10:00
Dirk 9afab04012 FIX #162 (leading space for rp banner and missing lf) 2015-08-17 20:13:52 +02:00
Dirk 405b0f10bf FIX #161 + small improvemnet on rengotiation 2015-08-15 21:33:17 +02:00
Dirk e3fcd786f7 - FIX #160 -- removed code from #27 
- bumped up version to 2.6rc2
 2015-08-15 18:48:49 +02:00
Dirk Wetter 8bc2909899 updated from git log for upcoming release 2015-08-14 13:34:45 +02:00
Dirk Wetter 58a1c1c1da - expiration variables tunable via ENV 
- cleanups expire section
 2015-08-13 16:56:12 +02:00
Dirk Wetter 2c12e7d20e Merge pull request #159 from tkaehn/fix-expiration-check 
Fix certificate expiration check
 2015-08-13 10:35:19 +02:00
Thomas Kähn 8963916b3b Fix certificate expiration check 2015-08-12 18:28:50 +02:00
Dirk Wetter 00c7fc2ccb Update CREDITS.md 2015-08-12 14:54:22 +02:00
Dirk Wetter 719536a44e FIX: Dilyans bug where a STARTTLS servive runs on a different port 2015-08-12 13:58:45 +02:00
Dirk 5bc6e5fda9 - if a record is local host it is shown now 
- also look in etc hosts for MSYS2
- cosmetic improvements
 2015-08-12 00:17:28 +02:00
Dirk Wetter 81b158431f NEW: showing # of detected pinned keys (HPKP) 2015-08-10 15:58:56 +02:00
Dirk Wetter 72aa8add5c FIX for missing CN (e.g. cloudflare) 2015-08-10 15:17:42 +02:00
Dirk Wetter e6f0f79157 - FIX: rDNS ignores CNAME now 
- some code beautified
 2015-08-10 14:47:11 +02:00
Dirk aa2b33fdb4 rp header fine tuning 2015-08-08 13:42:31 +02:00
Dirk dc60d9360a reverse proxy banner alignment 2015-08-08 13:37:05 +02:00
Dirk 56e6f90308 FIX #158 (pagesspeed header was identified as IPv4 addr) 2015-08-08 10:20:13 +02:00
Dirk Wetter 70ff293fb7 - fix for #156 
- reverting #27. Catch is the functions are being initiated at a fixed time instead of while calling. This conflicts with the --color option which is done late. Other solution?
 2015-08-05 11:31:55 +02:00
Dirk Wetter be7e03cfdf Update Readme.md 2015-08-04 13:44:54 +02:00
Dirk Wetter ab37fad6e6 Update CREDITS.md 2015-08-04 10:33:48 +02:00
Dirk Wetter 648439b6c3 Merge pull request #155 from jpluimers/master 
OS X builds with as many ciphers as possible without generating errors. Should fix #127
 2015-08-03 19:17:47 +02:00
Jeroen Pluimers 6e36a484d3 OS X builds with: 
cc_arguments_common="no-shared enable-static-engine no-zlib-dynamic enable-zlib enable-ssl2 enable-ssl3 enable-ssl-trace enable-rc2 enable-rc5 enable-gost enable-cms enable-md2 enable-mdc2 enable-ec enable-ec2m enable-ecdh enable-ecdsa enable-seed enable-camellia enable-idea enable-rfc3779 experimental-jpake -DOPENSSL_USE_BUILD_DATE"
   cc_arguments_x86="$cc_arguments_common"
   cc_arguments_x64="$cc_arguments_common enable-ec_nistp_64_gcc_128 "
Note: no -DTEMP_GOST_TLS yet.
 2015-08-02 23:22:57 +02:00
Dirk Wetter 6a982927ac mass testing option 2015-08-02 01:36:50 +02:00
Dirk f1fe2c3286 just renaming as rc1 for 2.6 2015-08-02 01:25:39 +02:00
Dirk fcb8c5d0bc - FIX for multiple ip addresses for one mx host (didn't expect a matroshka ;-)) 
- make dotted lines smaller
 2015-08-02 01:16:27 +02:00
Dirk ea1ab3b911 help for mass testing option in #153 2015-08-02 00:26:34 +02:00
Dirk 7ac08dc26a Color function maker 2015-08-02 00:07:08 +02:00
Dirk 325abcfc06 - first shot for szepeviktor's color function maker #27 2015-08-02 00:03:30 +02:00
Dirk 9006234c34 - NEW: mass testing via --file 
- FIX: ipv6 address in rDNS was ..umm err ....missing some chars
- rough ipv6 address detection (fixes single colon in "further ip addresses")
- FIX: facebook has EC certificate but signing algo is not EC
- FIX for wrong openssl location in banner
 2015-08-01 23:11:27 +02:00
Dirk Wetter 79f4e4237f Update old.CHANGELOG.txt 2015-07-30 09:29:42 +02:00
Dirk Wetter 2a6ef81f71 Update old.CHANGELOG.txt 2015-07-30 09:28:25 +02:00
Dirk Wetter 9347ecb8f1 Update and rename CHANGELOG.txt to old.CHANGELOG.txt 2015-07-30 09:22:41 +02:00
Dirk Wetter 535148267b Merge pull request #151 from PeterMosmans/awk-output 
Another fix for #140
 2015-07-27 12:51:17 +02:00
Peter Mosmans c04497f2f6 Another fix for #140 
Suppress awk warnings
Don't try to retrieve header information from openssl stderr output
 2015-07-27 12:16:03 +02:00