Commit Graph

942 Commits

Author SHA1 Message Date
Dirk 467988fb0a - improved resilience in cipher order check
- improved also there compatibility with intolerant IIS6 servers
2015-09-14 12:54:54 +02:00
Dirk Wetter 09c06e0ffa Update Readme.md 2015-09-14 11:21:24 +02:00
Dirk a2ba43ec78 - litemagenta should be used for not fatal conditions / magenta for fatal conditions (prg terminates then) 2015-09-14 11:12:37 +02:00
Dirk 9b08cb7584 - FIX /workaround for #188 (https://github.com/drwetter/testssl.sh/issues/188)
- bumped up version to rc4
2015-09-14 11:03:10 +02:00
Dirk a9f231b3ff - fix where an $PID"ERRFILE" was written 2015-09-09 16:41:32 +02:00
Dirk d28317f2d0 - exit code always 0 unless an error occured
- enable devel feaure of SSLv2 via socket
2015-09-08 19:30:03 +02:00
Dirk 566a059250 - fix for issue when a non-HTTP service indicates a misleading non-match of certificate
- wildcard check
2015-09-06 18:21:08 +02:00
Dirk Wetter b9bfa2355a fix for scott helme's multiple keys (https://scotthelme.co.uk/hpkp-toolset) 2015-09-04 14:19:06 +02:00
Dirk Wetter 422b4d511a minor cleanups for finding openssl binaries 2015-09-04 10:04:56 +02:00
Dirk Wetter 13b4497e8e Rename old.CHANGELOG.txt to CHANGELOG.stable-releases.txt 2015-09-03 15:15:36 +02:00
Dirk Wetter 32e471c856 Update old.CHANGELOG.txt 2015-09-03 15:14:14 +02:00
Dirk Wetter 35a69642ed Update Readme.md 2015-09-03 15:09:03 +02:00
Dirk Wetter 02800c78d9 Merge branch 'master' of github.com:drwetter/testssl.sh 2015-09-03 13:26:42 +02:00
Dirk Wetter 6a036cd7d4 removed hardcoded obsolete paths for binaries 2015-09-03 13:26:02 +02:00
Dirk Wetter a84562c678 Update Readme.md 2015-09-03 13:20:52 +02:00
Dirk Wetter 4ec089b508 - remove double binaries 2015-09-03 13:11:57 +02:00
Dirk Wetter 561c48f471 remove hashsums for the time being 2015-09-03 13:09:33 +02:00
Dirk 4c52c4121b bin mess cleanup contibued 2015-09-03 12:53:21 +02:00
Dirk 49802e8a41 - cleanup bin mess, part 2 2015-09-03 12:47:40 +02:00
Dirk 8d65c67d50 - cleanup bin mess ;-), part 1 2015-09-03 12:39:03 +02:00
Dirk ab78c45b11 update 2015-09-03 12:19:53 +02:00
Dirk 1c5870e3e3 typo, fix from Stefan Stidl (thx!) 2015-09-03 12:17:32 +02:00
Dirk 489baa1299 unitize programming styles: ${var} --> $var, double square brackets instead of single 2015-09-03 12:14:47 +02:00
Dirk Wetter 73b61469bf Merge pull request #186 from anoma/anoma-typo-patch-1
Typo. Inconsistent CVE string format
2015-09-03 10:25:03 +02:00
anoma 6b22851104 Typo. Inconsistent CVE string format
Trivial typo. All other CVE outputs are in the form CVE-XXXX-YYYY
2015-09-03 09:10:06 +01:00
Dirk Wetter 90930a2f78 - changed return code if someone dares to use dash as it hiccups
- catch users try to use sh instead of real bash (#184),  see http://www.gnu.org/software/bash/manual/bashref.html#Bash-POSIX-Mode)
2015-09-02 12:56:03 +02:00
Dirk Wetter 00131e2a66 Merge pull request #180 from jpluimers/master
Fixes #164 Mac OS X Darwin binaries with zlib support
2015-08-30 12:41:46 +02:00
Dirk Wetter 45eb3ed662 better phrasing for LOGJAM, see #181 2015-08-28 17:43:38 +02:00
Dirk Wetter 90ead7a301 FIX #183 2015-08-28 17:06:07 +02:00
Dirk Wetter aa175f2c56 Merge branch 'master' of github.com:drwetter/testssl.sh 2015-08-28 16:46:49 +02:00
Dirk Wetter 412fb6fb05 FIX #182 2015-08-28 16:46:28 +02:00
Dirk Wetter 8d0dccc31a Update Readme.md 2015-08-28 15:09:53 +02:00
Dirk Wetter 9b718d39d0 - removed VERBERR (is now DEBUG=2)
- hex2dec uses now internal echo instead of printf (which has problems with some chars if unexpected content if not properly used)
2015-08-28 14:59:04 +02:00
Dirk b5818f6034 - FIX $177
- some by-catches whle shellchecking
- minor cleanups
2015-08-28 00:15:51 +02:00
Jeroen Pluimers 6f5cf726e9 Merge branch 'master' of https://github.com/drwetter/testssl.sh 2015-08-27 23:06:06 +02:00
Jeroen Pluimers 06572c521f Mac OS X Darwin openssl binaries with zlib support 2015-08-27 23:03:59 +02:00
Dirk c102bb6712 micro fix for the ESC code orgination fron tput test 2015-08-27 20:39:20 +02:00
Dirk 0d9370237c - FIX #172
- labeled TLS_FALLBACK_SCSV as experimental, to be improved in next release (remarks in code)
- removed experimental from FREAK check
- separated headerfile from errorfile, TLS handshake oids were sometimes misinterpreted as IPv4 addreses in header
- bumped up rc version
- linefeeds
2015-08-27 11:25:12 +02:00
Dirk Wetter c93dc01b41 better service detection, dedicated line for NNTP and certificate stuff redirected to ERRFILE 2015-08-26 20:06:53 +02:00
Dirk Wetter 838112e6d2 - LibreSSL compatibility: recent pull spits out an error if cnf file isn't found (oh well) ==> introduction of #ERRFILE, good idea anyway
- commented what I wanted to achieve with the colors
- code cleanups
2015-08-24 23:50:03 +02:00
Dirk aa91990fb3 - fix bug where a host name like AAA.BBB.CCC.DDD.in-addr.arpa.DOMAIN.TLS was taken as an ipv4 address
- freebsd 9 supports now also colors with setaf, Darwin?
- correct indentation of help
- improved parsing in command line so that where a distinct option is required it is also tested in the 1st place
- removed -q in help (deprecated as we might want to use it for other things in the future)
- fix: if $PWD/openssl was a dir it bailed out
- cleanup of fatal errors ==> provide ONE function
2015-08-24 22:17:35 +02:00
Dirk 83bf9067aa FIX #167 (# of certificates provided) 2015-08-23 21:16:34 +02:00
Dirk Wetter 6baf5e377c - sanitize '%' in general output function, avoids hiccups in url encoded strings
- FIX #178 (Security headers only key in green, not value)
- CSP rule for facebook hast 127.0.0.1 which is labeled as IP address
2015-08-21 18:10:45 +02:00
Dirk Wetter 87cef93b6c - more solid parsing for HPKP header (FIX #163)
- X-UA-Compatible is now an "other" flag and key won't be swallowed
2015-08-21 12:43:10 +02:00
Dirk Wetter 394bde8ff5 output FIX for multiple CRLs (#165) 2015-08-21 10:47:29 +02:00
Dirk Wetter 4862ece267 Merge pull request #175 from PeterMosmans/typo-fix
Fixes #174
2015-08-18 21:30:50 +02:00
Peter Mosmans cd4ba60f16 Fixes #174
Thanks to Ligushka
2015-08-18 16:07:24 +02:00
Dirk Wetter 85268360c0 Update CREDITS.md 2015-08-18 10:15:15 +02:00
Dirk Wetter ab1de25238 Merge pull request #173 from jonorossi/darwin-san-fix
Fix subject alternative name on darwin
2015-08-18 10:13:28 +02:00
Jonathon Rossi e8cbf1a699 Fix subject alternative name on darwin 2015-08-18 17:15:17 +10:00