Commit Graph

4603 Commits

Author SHA1 Message Date
Dirk Wetter c5b07e7d99 Make the client side security clearer for STARTTLS
... also in the man pages. See also #2564.
2024-09-08 12:22:52 +02:00
Dirk Wetter be3e7651bb
Merge pull request #2564 from drwetter/starttls_phrasing
Phrasing of reason for STARTTLS grading improved
2024-09-07 17:08:50 +02:00
Dirk 3b85f53d52 added an accidently erased char 2024-09-07 16:15:03 +02:00
Dirk a1c67c0794 proper English 2024-09-07 16:03:53 +02:00
Dirk f9edaa7fe1 Phrasing of STARTTLS grading improved
... a a comment added in the desciption.

Unfortunately I couldn't get the line wrapping working.
2024-09-07 15:51:12 +02:00
Dirk Wetter 30f80cf9b3
Merge pull request #2561 from drwetter/fix_1312
Fix 1312
2024-09-06 18:55:24 +02:00
Dirk Wetter 9efe597a86
Merge pull request #2562 from drwetter/revert-2547-drwetter-patch-1
Revert "Update Dockerfile to leap 15.6"
2024-09-06 18:00:14 +02:00
Dirk Wetter bb7d9f4ac5
Revert "Update Dockerfile to leap 15.6" 2024-09-06 17:53:58 +02:00
Dirk 733c2d31b7 Automagic with openssl and TLS 1.3-only host 2024-09-06 17:37:42 +02:00
Dirk 52213d3072 Suppy documenation for TLS 1.3 only hosts
and the automagic wrt /usr/bin/openssl OPENSSL2 and OSSL_SHORTCUT
2024-09-06 17:32:53 +02:00
Dirk 3d2bd5020c fix spellcheck 2024-09-06 13:00:27 +02:00
Dirk 12bc15adc3 misc
- remove 1xLF in UI
- fix obsolete statment for OPENSSL2
2024-09-06 12:53:00 +02:00
Dirk becd310390 Address open UI problems for TLS 1.3 only hosts
While in 3.2 there was only a hint how to deal with TLS 1.3 only hosts, a restart
with --openssl=/usr/bin/openssl or setting of OSSL_SHORTCUT-true was required.

This PR changes the behavior: if an openssl version can be found in /usr/bin/openssl
(or SUPPLIED via OPENSSL2=/home/version/ofopenssl testssl <cmdline>) which
supports TLS 1.3 it switches automatically and informs the user that it has done so.
   This message is asynchonous and is implemented with a new function check_msg()
and a global OPEN_MSG, so that we maintain the formatting. Otherwise it would have
appeared between rDNS and service detection. Now it's nicely after service detection.
2024-09-06 12:47:03 +02:00
Dirk Wetter a20fd796e8
Merge pull request #2552 from drwetter/fix_2466
Trailing space after value in header is fine
2024-09-03 20:51:18 +02:00
Dirk Wetter 031c2a55ec
Merge pull request #2553 from drwetter/noCtrlCharInHeader
Remove crtl chars from HTTP header
2024-09-03 20:50:18 +02:00
Dirk Wetter 3cd027e1f1
Merge pull request #2551 from drwetter/banner
Improve banner (3.2)
2024-09-03 19:27:46 +02:00
Dirk 2b36b33112 Remove crtl chars from HTTP header
... which fixes #2337
2024-09-03 19:24:46 +02:00
Dirk 30a33e9a6e Trailing space after value in header is fine
This fixes #2466.
2024-09-03 19:10:29 +02:00
Dirk dbb8fc8013 Fix CI 2024-09-03 18:28:56 +02:00
Dirk 408e8f84f4 modify issue template for bash version 2024-09-03 15:42:54 +02:00
Dirk 5a1fd2623f Improve banner (3.2)
... for readability and bugs to be filed (fixes #2506)

This PR defines a short string for the OpenSSL banner as some suppliers have made them (unnecessarily) long so that it won't fit nice in the banner anymore.

The banner also now omits the built line from openssl as for the user it is normally not important.
2024-09-03 15:40:55 +02:00
Dirk Wetter e59a0f202f
Merge pull request #2549 from drwetter/drwetter-patch-1
Ignore Dockerfile.git
2024-09-03 12:46:28 +02:00
Dirk Wetter 5becbd0625
Merge pull request #2548 from drwetter/drwetter-patch-2
Update Dockerfile.git
2024-09-03 12:46:05 +02:00
Dirk Wetter 1443c62036
Ignore Dockerfile.git
... for CI run
2024-09-03 12:44:45 +02:00
Dirk Wetter e7c0173f8c
Merge pull request #2547 from drwetter/drwetter-patch-1
Update to leap 15.6
2024-09-03 12:42:22 +02:00
Dirk Wetter 79e199e736
Update Dockerfile.git
to use an up to date Alpine version
2024-09-03 12:41:09 +02:00
Dirk Wetter a9fcf443fa
Update to leap 15.6
as EOL for 15.5 is not very far away
2024-09-02 17:52:27 +02:00
Dirk Wetter b132a26432
Merge pull request #2544 from NaN-KL/patch-1
Fix: Reporting (Not Ok) for ClientHello/ServerHello errors
2024-08-26 18:14:23 +02:00
Dirk Wetter 4d70c7b82a
Merge pull request #2545 from drwetter/fix_2542
fix typo
2024-08-26 10:40:35 +02:00
Dirk Wetter 5eb829e6d6 fix typo 2024-08-26 10:38:37 +02:00
NaN 8a5d534b8a
Update testssl.sh
Fix to be consistent in reporting (Not Ok) for ClientHello/ServerHello errors.
2024-08-23 14:19:09 -07:00
Dirk Wetter f3f6dae8c1
Merge pull request #2540 from drwetter/dependabot/github_actions/docker/build-push-action-6.7.0
Bump docker/build-push-action from 6.5.0 to 6.7.0
2024-08-14 16:29:53 +02:00
dependabot[bot] ecf671eec2
Bump docker/build-push-action from 6.5.0 to 6.7.0
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 6.5.0 to 6.7.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v6.5.0...v6.7.0)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-08-14 00:22:17 +00:00
Dirk Wetter 009e358341
Merge pull request #2528 from drwetter/update_CAstores
Update Truststores
2024-07-23 12:11:54 +02:00
Dirk 76902af3b8 update hashes 2024-07-23 11:35:49 +02:00
Dirk 69c1a2fcb8 need to update hashes needs to be earlier 2024-07-23 11:35:16 +02:00
Dirk 778aab0241 dos2unix 2024-07-23 11:34:38 +02:00
Dirk 95ed863ac0 update MS CA root store 2024-07-23 10:42:14 +02:00
Dirk Wetter 67f555e15b
Merge pull request #2533 from drwetter/dependabot/github_actions/docker/login-action-3.3.0
Bump docker/login-action from 3.2.0 to 3.3.0
2024-07-23 10:06:09 +02:00
Dirk Wetter 04280396f6
Merge pull request #2532 from drwetter/dependabot/github_actions/docker/setup-qemu-action-3.2.0
Bump docker/setup-qemu-action from 3.1.0 to 3.2.0
2024-07-23 10:05:27 +02:00
Dirk Wetter 4499ef5e13
Merge pull request #2534 from drwetter/dependabot/github_actions/docker/build-push-action-6.5.0
Bump docker/build-push-action from 6.4.1 to 6.5.0
2024-07-23 10:05:06 +02:00
dependabot[bot] 3b46abbe8e
Bump docker/build-push-action from 6.4.1 to 6.5.0
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 6.4.1 to 6.5.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v6.4.1...v6.5.0)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-07-23 00:43:20 +00:00
dependabot[bot] 02d5a11354
Bump docker/login-action from 3.2.0 to 3.3.0
Bumps [docker/login-action](https://github.com/docker/login-action) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/v3.2.0...v3.3.0)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-07-23 00:43:18 +00:00
dependabot[bot] f476c6392d
Bump docker/setup-qemu-action from 3.1.0 to 3.2.0
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](https://github.com/docker/setup-qemu-action/compare/v3.1.0...v3.2.0)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-07-23 00:43:16 +00:00
Dirk Wetter fa9fe27ae6
Merge pull request #2530 from drwetter/fix_ipv6_ula_and_more
Fix IPv6 addresses
2024-07-22 23:31:37 +02:00
Dirk dd66449a45 Fix IPv6 addresses
Local and ULA and more IPv6 adresses were incorrectly filtered by ``awk '/^[0-9]/ { print $1 }'``
which searches in the first term for only numeric values.

The PR adds a-f and fixes #2529 .
2024-07-22 21:07:50 +02:00
Dirk 472eff85b1 Update Apple CA store
...and modify readme to reflect that the certificates are better to retrieve from GH
2024-07-22 17:08:18 +02:00
Dirk 3a9c0aa8ed Update Truststores
- Mozilla: 2024-7-02
- Debian 12, ca-certificates from 20230311
- JDK 21.04

See also #2525

ToDo:
- Apple (https://opensource.apple.com/source/security_certificates/ doesnt exist anymore), github?
- MS
- Check old LE CA
- update hashes
- update Readme
2024-07-22 16:38:45 +02:00
Dirk Wetter 1dbd9b8b78
Merge pull request #2524 from drwetter/dependabot/github_actions/docker/build-push-action-6.4.1
Bump docker/build-push-action from 6.4.0 to 6.4.1
2024-07-18 09:09:13 +02:00
dependabot[bot] 4816ed0e3c
Bump docker/build-push-action from 6.4.0 to 6.4.1
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 6.4.0 to 6.4.1.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v6.4.0...v6.4.1)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-07-18 00:33:59 +00:00