Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2025-02-02 22:01:16 +01:00
Code Issues Packages Projects Releases Wiki Activity
237 Commits 14 Branches 31 Tags 227 MiB
7d43dd7c8a
Commit Graph

111 Commits

Author SHA1 Message Date
Mark Felder
5478fe14e7 Make date command work with both Linux and FreeBSD 2015-03-13 15:51:50 -05:00
Mark Felder
b57d535341 Merge branch 'master' of github.com:feld/testssl.sh 2015-03-13 15:24:37 -05:00
Mark Felder
fa83aa33c4 more ps >/dev/null fixes 
more useless cat
 2015-03-13 15:24:16 -05:00
Mark Felder
4f6e94ab29 More useless cat 2015-03-13 15:19:47 -05:00
Mark Felder
541788fcad Remove 2>&1 for the ps $pid lines; it's unnecessary 2015-03-13 15:16:21 -05:00
Mark Felder
69dfc1f322 Merge branch 'master' of github.com:feld/testssl.sh 2015-03-13 15:12:45 -05:00
Mark Felder
268b3b02f4 Remove useless kittens 2015-03-13 15:10:36 -05:00
Mark Felder
6747974bc3 Revert to 2>&1 > /dev/null order because it isn't behaving correctly. 2015-03-13 14:56:30 -05:00
Mark Felder
f530eaf5fc Replace expr with $(( )) 
https://github.com/koalaman/shellcheck/wiki/SC2003
 2015-03-13 14:54:36 -05:00
Mark Felder
846dbad3d2 Fix missing single quote 2015-03-13 14:26:02 -05:00
Mark Felder
95b842ee49 Fix order of the redirect 
https://github.com/koalaman/shellcheck/wiki/SC2069
 2015-03-13 10:00:14 -05:00
Mark Felder
4b513de6c0 Replace backticks with $(..) 
https://github.com/koalaman/shellcheck/wiki/SC2006
 2015-03-13 09:52:39 -05:00
Dirk
dc05ff9b13 - FIX garbled output for servers with a TLS reply on SSLv2 socket call 2015-03-13 12:20:19 +01:00
Mark Felder
d4deef5920 Minor optimizations to redunce unnecessary forking 2015-03-11 12:13:38 -05:00
Dirk
7348093a12 FIX for #71 (proper workaround for lastpipe in rc4, pfs, and cbc) 2015-03-09 08:07:45 +01:00
Dirk
8b67fa3889 - NEW: proper check for freak CVE-2015-0204 
- NEW: check for number of keys for hpkp
- cleanup hsts+hpkp
 2015-03-07 09:51:55 +01:00
Dirk
48f5d6db87 - MX record: the lower the # the higher the priority (thx, rechi) 2015-03-03 07:21:30 +01:00
Dirk
2d6c087f84 - finalize mx records, FIX: #41 2015-03-02 14:42:28 +01:00
Dirk Wetter
21f3cbf009 Merge pull request #66 from Rechi/master 
Check MX Records (#41)
 2015-03-02 14:13:33 +01:00
Dirk
4e4e85fe96 - remark about rc4 rfc 2015-03-02 14:09:34 +01:00
Rechi
a6ef70a101 Check MX Records (#41) 2015-02-28 14:12:58 +01:00
Dirk
694d579110 - better detection for ssl poodle 
- change of shorticut from zero to letter o
 2015-02-27 21:21:39 +01:00
Marc Schütz
a38344cd38 Don't let error message slip through when no certs have been downloaded 2015-02-24 18:10:28 +01:00
Dirk Wetter
c8e3bce79a Merge pull request #64 from PeterMosmans/spellingfix 
FIX: minor spelling issue
 2015-02-24 10:03:32 +01:00
Peter Mosmans
e4c26089fa FIX: minor spelling issue 2015-02-24 14:57:43 +10:00
Dirk
f193a0e5b0 - FIX #62 (CentOS 7/RHEL: engine failure), was not usable b4 2015-02-23 10:40:10 +01:00
Dirk
affac236ca - FIXED: #47 ("double" linefeed if RFC mapping file is not present) 2015-02-22 23:05:40 +01:00
Dirk
4e863e4fa5 - NEW: tells how many certificates provides (and grabs them with DEBUG=1) 
- COLOR for no cipher order is red now
- "VULNERABLE" comes now always with "NOT ok"
 2015-02-21 11:47:12 +01:00
Dirk
31262a1011 - FIXED: #38, new openssl from peter mosmans makes the workaround unneccessary 2015-02-21 10:38:04 +01:00
Dirk
966b75a893 - Fix #55 (302 detection for URL) 2015-02-15 14:00:13 +01:00
Dirk
5ea0b8c281 - Fix #46 (preload lists HPKP and HSTS) 
- word match for includeSubDomains (useful if one specified the keyword wrong)
 2015-02-15 13:37:44 +01:00
Dirk
388ffa8fe0 - FIX #60: mod_security CRS doesn't complain anymore 2015-02-15 13:14:11 +01:00
Dirk
07fbb8c8f0 - certificate sha2 fingerprint added (#59, @@kyhwana) 
- sha1 fp: removed colons as long serials after it look ugly (lf)
 2015-02-15 12:58:51 +01:00
Dirk
6d37c9a3c5 - workaround for issue #58, same in http_header 
- FIX: if a web site returned IMAP e.g. in HTML code it may have led to the assumption IMAP is the service ;-/
 2015-02-13 16:01:46 +01:00
Dirk
e031ec83ed - FIX regression: CRIME check 
- FIX: port ended up sometimes as URL part
- also if it runs http a line is displayed as confirmation that HTTP was detected
 2015-02-12 13:40:53 +01:00
Dirk
b7911371d1 - WORKAROUND for bug in PeterMosmans OPENSSL chacha/poly version: not testing EXPORT40/EXPORT then 2015-02-12 09:32:47 +01:00
Dirk
8e9b07e72d - NEW: check for Secure Client-Initiated Renegotiation 
- debugging #1: PS4 and debugme
- debugging statement tmpfile_handle where missing #2
 2015-02-11 09:43:04 +01:00
Dirk
fb7f7df545 - starttls for ldap now also supported 2015-02-09 14:02:02 +01:00
Marc Schütz
986a853e19 Trivial typo fix 
noone => none
 2015-02-07 17:30:36 +01:00
Dirk
bad4bcfde2 - checking protoype of tls sockets but not called/working yet 
- small fixes $DEBUG
 2015-02-04 09:48:34 +01:00
Dirk
fba44b2f2c - NEW: certificate fingerprints + serial 2015-02-03 23:46:47 +01:00
Dirk
4062e572fa - TLS 1.0/1.1 is not green anymore, only TLS 1.2 is the real one! 
- no bold for 3DES and medium
- nslookup for MSYS2 etc. having no hosts (and fixing error message if host doesn't exist)
 2015-02-03 23:20:59 +01:00
Dirk
67b68d1d10 FIX: experiration threshold < 30 days 2015-01-30 16:26:55 +01:00
Dirk
e84a5efd8f - FIX: STARTTLS is the criteria for using bash sslv2 or not, not the service 2015-01-29 23:24:49 +01:00
Dirk
46e57484bc FIX: BEAST (supports higher protocols only when CBC ciphers detected) 
- FIX: URL in app banner
 - cosmetic issue: display also if one cookie was issue the number 1
 2015-01-29 23:20:58 +01:00
Dirk
d0e7d7bff9 * NEW: protocol check SSLv2 in bash sockets per default (HTTP) 
(fallback to openssl with SSL_NATIVE=1)
 2015-01-29 10:46:16 +01:00
Dirk
509aaaa2cc * NEW: emphasize any numbers in http header output 
* internal renaming of color functions ( --> pr_*)
* new color switches (tput)
* $COLOR is treated as integer not string
* for some issues color adjusted accordingly (red --> brown/yellow)
 2015-01-29 09:33:35 +01:00
Dirk
fbfdd03245 Merge branch 'master' of github.com:drwetter/testssl.sh 2015-01-28 15:31:13 +01:00
NV
5aaa75e4d4 Fix GOST handling in LibreSSL 2015-01-28 14:17:27 +09:00
Dirk
9009cc6ce0 fix for wrong # of HttpOnly cookie 2015-01-23 15:09:35 +01:00