Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2025-07-15 18:21:56 +02:00
Code Issues Packages Projects Releases Wiki Activity
4,481 Commits 17 Branches 34 Tags
bdab5f665c90a3696827eda0efb3e653c082d16c
Commit Graph

4481 Commits

Author SHA1 Message Date
Manuel
b48033e626 Remove outdated docker image 
The docker image over at https://quay.io/repository/jumanjiman is not maintained anymore.  The current version is 3 years old and has various security vulnerabilities, see https://quay.io/repository/jumanjiman/testssl/manifest/sha256:dea0446320f550acac1dfd1f2c592d43b526b737a3d9406388d636cb477053d6?tab=vulnerabilities.
 2023-08-10 10:30:16 +02:00
Dirk Wetter
c888475b2c Merge pull request from drwetter/3.1dev_to_3.2_references 
change references from 3.1dev to 3.2
 2023-07-31 17:15:15 +02:00
Dirk
2067ac8123 Fall back to heise.de 
.. to scan.

It worked in a few examples locally. Other hosts I tried so far weren't
available anymore (like scanme.nmap.org). In order to reduce the burden
we scan now only during PRs.
 2023-07-31 16:34:56 +02:00
Dirk
15b7f7b403 Stop using deprecated OS 2023-07-31 14:03:57 +02:00
Dirk
fc14a02035 Changed heise.de to example.com as sometimes we're blocked 2023-07-31 13:44:35 +02:00
Dirk
9e76b1e9ce Change content here too 2023-07-31 12:51:29 +02:00
Dirk
6669af2fc5 remove this one (3.2 see previous commit) 2023-07-31 12:46:50 +02:00
Dirk
5246194bee further files which contained 3.1dev 2023-07-31 12:46:04 +02:00
Dirk
b6143e1fb9 Change references from 3.1dev to 3.2 2023-07-31 12:40:56 +02:00
Dirk Wetter
3c0ae4663f Merge pull request from dcooper16/line_endings 
Fix line endings in etc/curves-mapping.txt
 2023-07-03 19:56:22 +02:00
David Cooper
d0e1c4a8e7 Fix line endings in etc/curves-mapping.txt 
The file etc/curves-mapping.txt currently has CRLF line endings and this seems to cause problems with git since .gitattributes now specifies LF line endings for .txt files. This commit changes the line endings for the file in order to (hopefully) prevent problems with git.
 2023-07-03 08:50:23 -07:00
Dirk Wetter
3a80a13d66 Merge pull request from drwetter/dependabot/github_actions/docker/build-push-action-4.1.1 
Bump docker/build-push-action from 4.1.0 to 4.1.1
 2023-06-15 13:27:40 +02:00
dependabot[bot]
6f7477ea9c Bump docker/build-push-action from 4.1.0 to 4.1.1 
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v4.1.0...v4.1.1)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-14 00:58:02 +00:00
Dirk Wetter
864877df0e Merge pull request from drwetter/dependabot/github_actions/docker/setup-qemu-action-2.2.0 
Bump docker/setup-qemu-action from 2.1.0 to 2.2.0
 2023-06-12 10:20:44 +02:00
Dirk Wetter
69549d815f Merge pull request from drwetter/dependabot/github_actions/docker/login-action-2.2.0 
Bump docker/login-action from 2.1.0 to 2.2.0
 2023-06-12 10:20:21 +02:00
Dirk Wetter
35590baa5a Merge pull request from drwetter/dependabot/github_actions/docker/build-push-action-4.1.0 
Bump docker/build-push-action from 4.0.0 to 4.1.0
 2023-06-12 10:19:54 +02:00
dependabot[bot]
4e391cf799 Bump docker/build-push-action from 4.0.0 to 4.1.0 
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v4.0.0...v4.1.0)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-12 01:15:58 +00:00
dependabot[bot]
5c552e7060 Bump docker/setup-qemu-action from 2.1.0 to 2.2.0 
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 2.1.0 to 2.2.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](https://github.com/docker/setup-qemu-action/compare/v2.1.0...v2.2.0)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-08 00:58:14 +00:00
dependabot[bot]
c3f4cee7a7 Bump docker/login-action from 2.1.0 to 2.2.0 
Bumps [docker/login-action](https://github.com/docker/login-action) from 2.1.0 to 2.2.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/v2.1.0...v2.2.0)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-08 00:58:09 +00:00
Dirk Wetter
7f49af1100 Merge pull request from drwetter/Improve_ServerHello_ErrorMessage 
Make clear where the parsing error comes from: SSL or TLS
 2023-06-05 12:45:28 +02:00
Dirk
858f00304c tiny clarification in debug mode 2023-06-02 16:57:47 +02:00
Dirk
6e2b9ae1c6 Make clear where the parsing error comes from: SSL or TLS 2023-06-02 16:43:27 +02:00
Dirk Wetter
00b510d08c Merge pull request from drwetter/lineending_lf 
try to fix the line ending problem using .gitattributes .
 2023-05-23 18:39:29 +02:00
Dirk Wetter
947b2565e6 Merge pull request from teki69/patch-1 
Fix CRL conversion issue when already in PEM format
 2023-05-23 18:38:46 +02:00
Dirk
33211c0cf1 add file types to be interpreted w lf line endings 2023-05-23 16:18:42 +02:00
Dirk
e6abc5fedc Try to fix the line ending problem 
... at github when using the browser for a PR.

It seems that the web interface inserts an additional CR
and doesn't stick to the LF line endings.

Not sure it helps though. It can't hurt though.
 2023-05-23 16:12:11 +02:00
teki69
eb76fd08cb Adds a warning when downloaded CRL is PEM format 2023-05-23 11:37:03 +02:00
teki69
ebcb5554a8 Fix CRL conversion issue when already in PEM format 
If downloaded CRL file is already in PEM format, openssl command will fail as it is always trying to convert from a DER-encoded CRL. 
This commit is for adding a test of the CRL format prior to running the openssl crl conversion. 

Note: as the openssl verify command then assumes that a .pem tmpfile has been generated by the conversion, there would be an issue when the conversion was not needed (i.e. CRL already PEM-encoded) as that .pem would be missing; therefore I also added a copy of the .crl file to a .crl.pem file before the optional conversion.
 2023-05-22 17:10:25 +02:00
Dirk Wetter
f71619326d Merge pull request from drwetter/fix_2361_dnsminimal 
Fix misleading output
 2023-05-16 10:44:56 +02:00
Dirk Wetter
9b8dc3a07e Fix misleading output 
... when instructed to do no DNS queries at all
 2023-05-16 09:05:04 +02:00
Dirk Wetter
be987d17a0 Merge pull request from mum-viadee/run_renego_sni_patch 
Secure renegotiations tests need servername for servers that use SNI
 2023-05-15 15:26:37 +02:00
mum-viadee
22a4f52774 Clarify comment, redone 2023-05-15 15:20:54 +02:00
mum-viadee
6216bcd635 Revert "Update testssl.sh" 
This reverts commit e33e0bc204.
 2023-05-15 15:16:16 +02:00
Dirk Wetter
e33e0bc204 Update testssl.sh 
clarify comment
 2023-05-15 15:04:59 +02:00
mum-viadee
93466806f5 Added SNI to openssl call for testing secure client-initiated renegotiation 2023-05-15 08:13:21 +02:00
mum-viadee
f0f6b1a4fb Typo in comment corrected 2023-05-12 14:26:27 +02:00
mum-viadee
04f7b34028 Added SNI to openssl call for testing secure renegotiation 2023-05-12 13:53:54 +02:00
Dirk Wetter
aa5235e658 Merge pull request from Odinmylord/3.1dev 
Add information to RSA-PSS report
 2023-04-01 09:51:27 +02:00
Dirk Wetter
a04291fdb1 Merge pull request from dcooper16/pss_cert_tls13 
Find RSASSA-PSS certificates with TLS 1.3
 2023-03-31 16:38:14 +02:00
Dirk Wetter
13b42069d5 Merge pull request from dcooper16/brainpooltls13 
Add support for brainpool curves with TLS 1.3
 2023-03-31 16:36:33 +02:00
David Cooper
dc996ba2b9 Find RSASSA-PSS certificates with TLS 1.3 
This commit fixes get_server_certificate() so that it can obtain certificates with RSASSA-PSS subject public keys over TLS 1.3.
 2023-03-28 14:31:28 -07:00
David Cooper
5002dd23b1 Add support for brainpool curves with TLS 1.3 
This commit adds support for the curves brainpoolP256r1tls13, brainpoolP384r1tls13, and brainpoolP512r1tls13.
 2023-03-28 08:53:20 -07:00
Dirk Wetter
82fbd8076e Merge pull request from drwetter/suse_docker 
Switching from Alpine Image to multistaged opensuse/leap
 2023-03-24 09:23:26 +01:00
Dirk
91f3d9716b amending previous commit 2023-03-23 15:05:15 +01:00
Dirk
90aa86ce6b add another contributor and change 
(not related to this PR but it'll be forgotten otherwise)
 2023-03-23 14:45:51 +01:00
Dirk Wetter
f95d0dd09a Merge pull request from drwetter/w4ntun-merge 
fixed DNS via Proxy
 2023-03-23 14:31:17 +01:00
Dirk
bad5dedf42 correcting Brennan's name 2023-03-23 14:22:05 +01:00
Dirk
48a597e19d don't forget the kudos ;-) 2023-03-23 09:11:14 +01:00
Odinmylord
035996cc44 updated default_testssl.csvfile with new RSA-PSS 2023-03-23 00:14:15 +01:00
Odinmylord
cf0c1c1f5f Added more details to the SignatureAlgorithms 2023-03-22 23:14:56 +01:00