1
0
mirror of https://github.com/drwetter/testssl.sh.git synced 2025-07-15 02:01:57 +02:00
Commit Graph

3382 Commits

Author SHA1 Message Date
b1eda9b2bf Just bump version 2020-05-07 19:55:04 +02:00
fb80e1cc44 Merge pull request from dcooper16/fix_cp_error_30
Fix copy and paste error
2020-05-07 19:44:16 +02:00
d4bb2dd906 Fix copy and paste error
This commit fixes a bug in the 3.0 branch that was introduced by an accidental copy and paste.
2020-05-07 12:31:55 -04:00
0393cb42f9 Labelling, look @ 3.0.2
* outlook to 3.0.2 (~tomorrow), remove ref. to rc
* fix docker cmd line (albeit there's still a problem w dockerhub) 
* label 3.1dev it as a ~rolling release
2020-05-07 11:16:59 +02:00
f49d73498a Merge pull request from dcooper16/backport_1609_and_1616
Backport  and 
2020-05-06 16:34:57 +02:00
3d48e6c7cb Backport and
This commit back ports  and  to the 3.0 branch.
2020-05-06 08:39:22 -04:00
005abad35c Merge pull request from drwetter/license_patch3.0
Amendment to "Relax the possible GPL license contradiction"
2020-05-06 09:19:04 +02:00
1325178f8d Amendment to "Relax the possible GPL license contradiction"
fix it also in the man pages. See  / 
2020-05-06 09:12:38 +02:00
870b78034d Merge pull request from drwetter/xmpp_improvements_3.0
Fix STARTTLS pretests, improve XMPP handshakes (backport)
2020-05-05 08:47:30 +02:00
6df3f2bd4e Remove not needed if clause in starttls_io()
.. amends 35833c1979
2020-05-04 23:05:53 +02:00
35833c1979 Fix STARTTLS pretests, improve XMPP handshakes (backport)
There was a empty variable in determine_optimal_proto() which prevented to save STARTTLS_OPTIMAL_PROTO. This is fixed.

The buffers and return codes for XMPP in starttls_io() were under not every
circumstances correct. This fixes those cases and making that in general more
robust (hopefully).
2020-05-04 23:03:01 +02:00
47e16b08c5 Merge pull request from drwetter/1590_2
Address further potential license restriction
2020-05-04 20:27:52 +02:00
c5cee3ddb6 Address further potential license restriction
.. see https://github.com/drwetter/testssl.sh/issues/1590#issuecomment-623526604

Added some formatting and verbal improvements in the intruductory comment section.
2020-05-04 20:24:24 +02:00
85faf9d096 Merge pull request from drwetter/add_brotli_3.0
Add brotli compression detection for BREACH (backport)
2020-05-04 17:50:32 +02:00
85a529ee00 Add brotli compression detection for BREACH (backport)
As noted in  the brotli compression check was missing. So hosts
which didn't offer gzip deflate or compress but brotli seemed to
be fine but they shoould have been labled as potentially VULNERABLE.

This also fixes a bug: The HTTP header returned was only checking
for case-sensitive "Content-Encoding". RFC 2616 states in 4.2
(Message Headers): "Field names are case-insensitive"
2020-05-04 13:23:05 +02:00
dbff0f9673 Merge pull request from drwetter/aes_cgm_doc_3.0
Fix typo in docs: Strong grade Ciphers / AEAD
2020-05-02 20:01:27 +02:00
e3ecd72deb Fix typo in docs: Strong grade Ciphers / AEAD 2020-05-02 19:57:02 +02:00
5521063620 Merge pull request from dcooper16/improve_libressl_302_compat_30branch
Improve compatibility with LibreSSL 3.0.2 and earlier
2020-05-01 20:44:16 +02:00
25d0d4242b Improve compatibility with LibreSSL 3.0.2 and earlier
This commit makes the same changes as , but for the 3.0 branch.
2020-05-01 14:41:05 -04:00
ef535b6282 Merge pull request from dcooper16/ticketbleed_no_tls1_3_30branch
Ticketbleed and TLS 1.3
2020-04-30 13:52:27 +02:00
7419e0da9c Ticketbleed and TLS 1.3
This commit makes the same changes as , but for the 3.0 branch.
2020-04-30 07:43:20 -04:00
3d6d1ac9d7 Merge pull request from dcooper16/ossl30_compat_for_30branch
Improve compatibility with OpenSSL 3.0
2020-04-29 16:14:01 +02:00
2b8901e0c3 Improve compatibility with OpenSSL 3.0
This commit makes the same changes to the 3.0 branch as  makes to the 3.1dev branch.
2020-04-29 08:50:09 -04:00
09fe651b36 Merge pull request from drwetter/1590_readme
Relax the possible GPL license contradiction
2020-04-28 10:03:40 +02:00
126e501143 Relax the possible GPL license contradiction
... see also 
2020-04-28 10:02:03 +02:00
3c403a2484 Merge pull request from drwetter/np_fix30
Negotiated protocol showed no warning for TLS 1.1/1.0
2020-04-25 11:13:49 +02:00
5c73a23cfe Negotiated protocol showed no warning for TLS 1.1/1.0
.. whereas the protocol section did that.

This fixes the inconsistency.
2020-04-25 11:06:35 +02:00
ac53ec2531 Merge pull request from dcooper16/fix_logjam_ssl_native_3.0
Fix run_logjam() in --ssl-native mode (3.0 branch)
2020-04-24 09:42:43 +02:00
8723fc78b1 Fix run_logjam() in --ssl-native mode (3.0 branch)
This commit fixes the same issue as , but in the 3.0 branch.
2020-04-23 15:01:50 -04:00
2fcbcbe9d1 Merge pull request from drwetter/drwetter-patch-1
Update reference to ZIP file
2020-04-21 20:30:50 +02:00
11123840a7 Merge pull request from drwetter/1571_30
Fix misleading phrasing in run of standard ciphers
2020-04-21 20:30:38 +02:00
5fdeb32f94 Update reference to ZIP file
to 3.0.1
2020-04-21 18:58:27 +02:00
4809c763cc Fix misleading phrasing in run of standard ciphers
see . Bit size doesn't matter. It only matters to the
user which ciphers they are.
2020-04-21 18:46:57 +02:00
af86cce011 Better version naming
bugfix releases for 3.0 are    3.0.x instead of 3.0-1
3.0.1
2020-04-15 12:35:51 +02:00
27948d80a8 Merge pull request from drwetter/release.3.0-1
Preparing bugfix release for 3.0
3.0-1
2020-04-15 09:28:41 +02:00
3f5735a1a0 make the sneaky user agent sneaky again 2020-04-14 14:14:45 +02:00
8b1b9f9f27 Preparing bugfix release for 3.0
* Bump version
* Removed ancient CVS tag detection code
* ~ backported code doc changes (http --> https and more) from @multiflexi
  see 7eba0fbb41
2020-04-14 13:18:52 +02:00
e51a90d7e1 Merge pull request from dcooper16/fix1551_30
Fix  in 3.0
2020-04-01 22:28:47 +02:00
267ce87733 Fix in 3.0
This commit fixes  in the 3.0 branch by changing get_cipher() to recognize RFC names that begin with SSL_*. It also modifies run_beast() so that it does not get stuck in an infinite loop if get_cipher() doesn't return a valid cipher name.
2020-04-01 13:36:39 -04:00
ec6b724433 Merge pull request from dcooper16/display_ciphernames_bug_3.0
Fix bug in setting DISPLAY_CIPHERNAMES in 3.0
2020-03-25 18:28:30 +01:00
e1c27d61a6 Fix bug in setting DISPLAY_CIPHERNAMES in 3.0
This commit fixes the same bug as , but in the 3.0 branch.
2020-03-25 12:59:54 -04:00
b2252002f4 Merge pull request from mkauschi/http-basic-auth-backport-patch
backport patch for the http basic auth bug from PR 1538
2020-03-18 14:51:36 +01:00
3d60151028 backport patch for the http basic auth bug from PR 1538 2020-03-18 14:08:50 +01:00
4601670bac Merge pull request from drwetter/breach_output3
Fix output for BEAST when no SSL3 or TLS
2020-03-07 12:15:55 +01:00
3f5aa1b7df Fix output for BEAST when no SSL3 or TLS
LF added
2020-03-06 22:09:00 +01:00
1f6ebae401 Merge pull request from dcooper16/fix_typo_emphasize_stuff_in_headers_3.0
Fix typo in emphasize_stuff_in_headers()
2020-03-06 21:28:55 +01:00
dca5a3b860 Fix typo in emphasize_stuff_in_headers()
This commit fixes the same typo as , but in the 3.0 branch.
2020-03-06 14:32:43 -05:00
c4d2c2de48 Merge pull request from dcooper16/percent_printing_3.0
Fix printing percent characters
2020-03-06 20:04:45 +01:00
ed5bdffc84 Fix printing percent characters
This commit makes the same change as , but in the 3.0 branch.
2020-03-06 12:21:18 -05:00
069baa0b6e Merge pull request from drwetter/pwdfix3
avoid external pwd
2020-03-06 15:04:18 +01:00