Commit Graph

3942 Commits

Author SHA1 Message Date
Dirk f8ba69f9fb - some internal code internal cleanups
- minor cosmetic output corrections
- preparation for bash sockets for SSLv3 to TLS 1.2
2015-03-16 00:22:51 +01:00
Dirk 4556108a72 further improvements through shellcheck 2015-03-15 16:59:29 +01:00
Dirk 68695bbad3 FIX #74 for sed BSD: doesn't like inline \n
headline for BEAST was missing
2015-03-15 16:10:14 +01:00
Dirk 655944bd4d - FIX: regression for wc -l w/o cat (3x)
- removal of unneccessary waitpid, inline
2015-03-15 14:41:34 +01:00
Dirk fbd383f345 - prework for checking hpkp fingerprints 2015-03-15 10:18:37 +01:00
Dirk 5cd4b8f73e - Shellcheck static analysis by Mark 2015-03-15 09:04:49 +01:00
Dirk Wetter bf411d8c11 Merge pull request #73 from feld/master
Shellcheck static analysis
2015-03-15 08:56:01 +01:00
Mark Felder 2684f5c392 Make date command work with both Linux and FreeBSD 2015-03-13 15:51:50 -05:00
Mark Felder 6f15652121 Merge branch 'master' of github.com:feld/testssl.sh 2015-03-13 15:24:37 -05:00
Mark Felder 8cdd516ad1 more ps >/dev/null fixes
more useless cat
2015-03-13 15:24:16 -05:00
Mark Felder 8d965f7c71 More useless cat 2015-03-13 15:19:47 -05:00
Mark Felder 7babe7478d Remove 2>&1 for the ps $pid lines; it's unnecessary 2015-03-13 15:16:21 -05:00
Mark Felder c83e1b98e2 Merge branch 'master' of github.com:feld/testssl.sh 2015-03-13 15:12:45 -05:00
Mark Felder 8ad1cca0ab Remove useless kittens 2015-03-13 15:10:36 -05:00
Mark Felder 4cdc89aa61 Revert to 2>&1 > /dev/null order because it isn't behaving correctly. 2015-03-13 14:56:30 -05:00
Mark Felder 59ed025f36 Replace expr with $(( ))
https://github.com/koalaman/shellcheck/wiki/SC2003
2015-03-13 14:54:36 -05:00
Mark Felder 73202da2fd Fix missing single quote 2015-03-13 14:26:02 -05:00
Mark Felder b7b88a03e7 Fix order of the redirect
https://github.com/koalaman/shellcheck/wiki/SC2069
2015-03-13 10:00:14 -05:00
Mark Felder 305fcca2ae Replace backticks with $(..)
https://github.com/koalaman/shellcheck/wiki/SC2006
2015-03-13 09:52:39 -05:00
Dirk b5a568da62 - @feld 2015-03-13 12:21:06 +01:00
Dirk c1ca5a641b - FIX garbled output for servers with a TLS reply on SSLv2 socket call 2015-03-13 12:20:19 +01:00
Dirk Wetter 74d984cebc Merge pull request #72 from feld/feld
Minor optimizations to reduce unnecessary forking
2015-03-13 11:00:52 +01:00
Mark Felder f037a3f811 Minor optimizations to redunce unnecessary forking 2015-03-11 12:13:38 -05:00
Dirk d8d8318f6d FIX for #71 (proper workaround for lastpipe in rc4, pfs, and cbc) 2015-03-09 08:07:45 +01:00
Dirk 77e28922c1 - NEW: proper check for freak CVE-2015-0204
- NEW: check for number of keys for hpkp
- cleanup hsts+hpkp
2015-03-07 09:51:55 +01:00
Dirk f23904b35f - MX record: the lower the # the higher the priority (thx, rechi) 2015-03-03 07:21:30 +01:00
Dirk 77ed44207c - see #41 2015-03-02 14:44:02 +01:00
Dirk 55e8908234 - finalize mx records, FIX: #41 2015-03-02 14:42:28 +01:00
Dirk Wetter 2614c093d7 Merge pull request #66 from Rechi/master
Check MX Records (#41)
2015-03-02 14:13:33 +01:00
Dirk 37fa44cecf - remark about rc4 rfc 2015-03-02 14:09:34 +01:00
Dirk Wetter 3f55de1483 Update Readme.md 2015-03-02 13:59:45 +01:00
Rechi 81afa43755 Check MX Records (#41) 2015-02-28 14:12:58 +01:00
Dirk 29214c7a1f - better detection for ssl poodle
- change of shorticut from zero to letter o
2015-02-27 21:21:39 +01:00
Dirk Wetter 87f821e390 Merge pull request #65 from schuetzm/fix-nrsaved
Don't let error message slip through when no certs have been downloaded
2015-02-24 18:28:09 +01:00
Marc Schütz 274ee394e8 Don't let error message slip through when no certs have been downloaded 2015-02-24 18:10:28 +01:00
Dirk Wetter 868c813055 Merge pull request #64 from PeterMosmans/spellingfix
FIX: minor spelling issue
2015-02-24 10:03:32 +01:00
Peter Mosmans 5440b24b92 FIX: minor spelling issue 2015-02-24 14:57:43 +10:00
Dirk 8aa8254c2d - FIX #62 (CentOS 7/RHEL: engine failure), was not usable b4 2015-02-23 10:40:10 +01:00
Dirk d0d7bb47e2 - FIXED: #47 ("double" linefeed if RFC mapping file is not present) 2015-02-22 23:05:40 +01:00
Dirk e2448ea95d - NEW: tells how many certificates provides (and grabs them with DEBUG=1)
- COLOR for no cipher order is red now
- "VULNERABLE" comes now always with "NOT ok"
2015-02-21 11:47:12 +01:00
Dirk 1be281c404 - FIXED: #38, new openssl from Peter Mosmans makes the workaround unneccessary 2015-02-21 10:46:30 +01:00
Dirk a255462812 - to tell the difference between the sets of binaries 2015-02-21 10:39:27 +01:00
Dirk bacb3b69ba - FIXED: #38, new openssl from peter mosmans makes the workaround unneccessary 2015-02-21 10:38:04 +01:00
Dirk Wetter cacb200049 Update Readme.md 2015-02-15 14:10:11 +01:00
Dirk b261c1079a - Fix #55 (302 detection for URL) 2015-02-15 14:00:13 +01:00
Dirk f203b8b299 - Fix #46 (preload lists HPKP and HSTS)
- word match for includeSubDomains (useful if one specified the keyword wrong)
2015-02-15 13:37:44 +01:00
Dirk b0a40ae1e8 - FIX #60: mod_security CRS doesn't complain anymore 2015-02-15 13:14:11 +01:00
Dirk ab48c66f74 - certificate sha2 fingerprint added (#59, @@kyhwana)
- sha1 fp: removed colons as long serials after it look ugly (lf)
2015-02-15 12:58:51 +01:00
Dirk e5a015b842 - workaround for issue #58, same in http_header
- FIX: if a web site returned IMAP e.g. in HTML code it may have led to the assumption IMAP is the service ;-/
2015-02-13 16:01:46 +01:00
Dirk d15d5b0c6f - FIX regression: CRIME check
- FIX: port ended up sometimes as URL part
- also if it runs http a line is displayed as confirmation that HTTP was detected
2015-02-12 13:40:53 +01:00