Dirk
ab7f66533c
- FIX #323
...
- add MicrosoftSharePointTeamServices in header detection
2016-03-19 17:20:36 +01:00
Dirk Wetter
a0b7d04974
Update README.md
2016-03-14 22:40:29 +01:00
Dirk Wetter
50660e9edd
typos, minor additions
2016-03-13 21:13:03 +01:00
Dirk Wetter
682ea066d6
typos, clarification
2016-03-13 21:10:00 +01:00
Dirk Wetter
7f28b17b3c
- updated, see #317
2016-03-13 20:38:06 +01:00
Dirk Wetter
46407ad2e4
- updated Mozilla truststore from http://curl.haxx.se/ instead of local firefox install, #317
2016-03-12 18:19:15 +01:00
Dirk Wetter
942359c8c1
- FIX #318
...
- minor code housekeeping
- increased amount of buffer read for sockets, real fix follows. #313
2016-03-12 17:08:43 +01:00
Dirk Wetter
cf7fb4f773
Update Readme.md
2016-03-11 16:42:20 +01:00
Dirk Wetter
9753f0dbb7
Update Readme.md
2016-03-11 16:41:46 +01:00
Thomas Patzke
7cc41a1a92
logfile, jsonfile and csvfile parameters work without = (as documented in help)
2016-03-08 22:25:00 +01:00
Dirk Wetter
a72133419a
web frontend
2016-03-08 18:12:34 +01:00
Dirk
3ab9ec0230
Merge branch 'master' of github.com:drwetter/testssl.sh
2016-03-08 10:39:13 +01:00
Dirk
7b0fabdbc4
- making the read buffer for server hello bigger+variable
2016-03-08 10:38:21 +01:00
Dirk Wetter
0cae7a9a7d
Merge pull request #311 from noqqe/master
...
Format readme for better readability
2016-03-07 20:20:24 +01:00
Florian Baumann
1f3cd99ce8
Format readme for better readability
2016-03-07 13:04:30 +01:00
Dirk
483139f0a4
- show censy link by default
2016-03-05 21:35:30 +01:00
Dirk Wetter
28a6199109
- several code housekeepings
...
* SHOW_EACH_C has now the correct logic
* pr_litemagenta ==> pr_warning
* fileout WARN according to pr_warning then changed appropiately
* some global vars in "" to avoid unneccessary shell expansion
* HAS_SSL2/HAS_SSL3 now works more reliably
* warning added in cipher order if ssl2/ssl3 is not supported by openssl
2016-03-05 21:07:49 +01:00
Dirk Wetter
118f897d6d
Merge pull request #308 from skunkwerks/master
...
fix certificate_info() test
2016-03-04 00:33:25 +01:00
Dave Cottlehuber
9e77f38318
fix certificate_info() test
2016-03-03 21:47:36 +01:00
Dirk Wetter
1ead2e65bc
- experimental label for DROWN
2016-03-03 20:04:20 +01:00
Dirk Wetter
6367693ccf
- first check for DROWN #305
2016-03-03 19:50:44 +01:00
Dirk Wetter
752e6cdf56
- one outstanding openssl CVE issue wrt SSLv2
...
- first skeleton for DROWN #305
2016-03-03 11:56:25 +01:00
Dirk Wetter
c4a68df423
Merge pull request #306 from thecky/severity
...
Rename pr_() from color to severity naming
2016-03-02 16:49:46 +01:00
Thomas Martens
38477b4383
renamed pr_brown to pr_svrty_medium
2016-03-01 20:42:34 +01:00
Thomas Martens
dbfa66e6c7
renamed pr_yellow to pr_svrty_minor
2016-03-01 20:41:03 +01:00
Thomas Martens
ff9f1632e4
renamed pr_green to pr_done_best
2016-03-01 20:39:30 +01:00
Thomas Martens
2686f8cdb4
renamed pr_litegreen to pr_done_good
2016-03-01 20:36:41 +01:00
Thomas Martens
207e4e5ce4
renamed pr_red to pr_svrty_critical
2016-03-01 20:31:26 +01:00
Thomas Martens
cad924e707
renamed pr_litered to pr_svrty_high
2016-03-01 20:25:41 +01:00
Thomas Martens
490da0069a
Merge branch 'master' of https://github.com/drwetter/testssl.sh into severity
2016-03-01 20:08:26 +01:00
Dirk Wetter
61ecf051e4
Merge pull request #300 from Dude4Linux/uppercase-severity-codes
...
Consistent case severity codes
2016-02-24 08:35:24 +01:00
Thomas Martens
f90f1a91e4
Merge branch 'master' of https://github.com/drwetter/testssl.sh into severity
2016-02-23 21:04:16 +01:00
John Carver
87218b6b1a
Merge branch 'master' into uppercase-severity-codes
2016-02-23 10:34:32 -06:00
Dirk Wetter
53e76b0545
Update Readme.md
2016-02-23 09:08:11 +01:00
Dirk
20cee1e788
- fix: relative redirect led to fp (https)
2016-02-22 10:44:43 +01:00
Dirk
c70a13d014
- fix #296 (no recent regression as assumed)
2016-02-20 21:46:17 +01:00
Dirk
583584e095
- FIX #297
...
- FIX #243
- reformmated BEAST a bit (was screwed up in ! WIDE mode if too many ciphers
2016-02-20 14:10:04 +01:00
Dirk
71b4c03202
- fix key problem hpkp
2016-02-20 11:07:47 +01:00
John Carver
4be1539a4d
lowercase ok when used with NOT in (NOT ok)
2016-02-18 11:49:47 -06:00
John Carver
291edce0c3
uppercase server sets a cipher order (OK)
2016-02-18 11:41:17 -06:00
John Carver
6858026412
uppercase INFO when outputting status_code
2016-02-18 11:15:31 -06:00
Dirk Wetter
7846fc5fef
Merge pull request #294 from b1gb1t/jsonCorrection
...
Correction of line 3607: new line (\n) corrupted the json format
2016-02-16 12:32:05 +01:00
b1gb1t
2ee021d337
Correction of line 3607: new line (\n) corrupted the json format
2016-02-16 09:54:01 +01:00
Thomas Martens
baff869850
Merge branch 'master' of https://github.com/drwetter/testssl.sh into severity
2016-02-14 12:10:07 +01:00
Dirk Wetter
61c1669687
Merge pull request #292 from dcooper16/multiple_certificates
...
Detect multiple certificates cleanup
2016-02-14 00:08:52 +01:00
Dirk Wetter
79445ebe5b
Merge pull request #293 from SietsevanderMolen/fix-json
...
fix json output
2016-02-12 15:11:45 +01:00
Sietse van der Molen
394f186000
also remove carriage returns, fix for csv
2016-02-12 12:40:31 +01:00
Sietse van der Molen
b2e4df60ca
fix json output
...
use double quotes instead of single quotes
delete newlines from strings
2016-02-12 11:05:36 +01:00
David Cooper
02239be295
Detect multiple certificates cleanup
...
This corrects the indentation within determine_trust() when there are multiple certificates and the output for "Chain of trust (experim.)" takes up more than one lines.
In addition, it fixes the ID field of the JSON output for entries related to the certificate. At the moment, each ID string begins with a blank space. This changes it to remove the space if there is one certificate and to add "Server Certificate #X" at the beginning of each ID if there is more than one certificate.
Perhaps there's a better way than just using, for example, "Server Certificate #1 key_size" as a way to distinguish multiple "key_size" entries in the JSON file. This is just one idea, and it can certainly be changed if those who intend to use the JSON output prefer something else.
2016-02-09 13:35:46 -05:00
AndreiD
8842aeb2b9
Fix #289 - the grep that decides whether a domain is a local address doesn't consider the case when the full domain name is in the hosts file, but followed by .some.other.stuff. This PR addresses this case.
2016-02-08 12:51:54 +01:00