mirror of
https://github.com/drwetter/testssl.sh.git
synced 2025-08-07 13:28:28 +02:00
.github
bin
doc
etc
t
utils
00_unittest_baseline.sh
ccs-injection.bash
checkcert.sh
create_ca_hashes.sh
curves.bash
docker-debian10.tls13only.start.sh
docker-nginx.tls13-earlydata.start.sh
generate_static_cipher_lists.sh
gmap2testssl.sh
heartbleed.bash
hexstream2cipher.sh
make-openssl.sh
make-openssl111.sh
parse_client_ciphers.pl
prototype.ssl2proto-check.bash
prototype.tls-protocol-checker.bash
resume.sh
ticketbleed.bash
update_client_sim_data.pl
.gitignore
CHANGELOG.md
CONTRIBUTING.md
CREDITS.md
Dockerfile
Dockerfile.git
Dockerfile.md
LICENSE
Readme.md
openssl-iana.mapping.html
testssl.sh
32 lines
1.2 KiB
Bash
32 lines
1.2 KiB
Bash
|
|
# no early data, but TLS 1.3 with debian:buster (sid similar in Feb 2019)
|
|
|
|
image=${1:-"debian:buster"}
|
|
docker pull "$image"
|
|
ID=$(docker run -d -ti $image)
|
|
|
|
[[ -z "$ID" ]] && echo "container couldn't be retrieved" >&2 && exit 1
|
|
|
|
docker exec -ti $ID apt-get update
|
|
docker exec -ti $ID apt-get install -y ssl-cert dialog
|
|
docker exec -ti $ID apt-get install -y nginx-common nginx-light
|
|
docker exec -ti $ID cp /etc/nginx/sites-available/default /etc/nginx/sites-available/default.bak
|
|
docker exec -ti $ID sed -i -e 's/# listen/listen/' -e 's/# include/include/' /etc/nginx/sites-available/default
|
|
if echo "$0" | grep -q only; then
|
|
docker exec -ti $ID sed -i -e 's/listen \[::\]:443 ssl default_server;/&\n\tssl_protocols TLSv1\.3;\n\tssl_ecdh_curve X448:X25519;/' /etc/nginx/sites-available/default
|
|
else
|
|
docker exec -ti $ID sed -i -e 's/listen \[::\]:443 ssl default_server;/&\n\tssl_protocols TLSv1\.2 TLSv1\.3;\n\tssl_ecdh_curve X448:X25519;/' /etc/nginx/sites-available/default
|
|
fi
|
|
|
|
docker exec -ti $ID nginx -V
|
|
docker exec -ti $ID service nginx start
|
|
docker exec -ti $ID service nginx status
|
|
# P Q
|
|
|
|
docker inspect $ID | jq -r '.[].NetworkSettings.IPAddress'
|
|
|
|
exit 0
|
|
|
|
|
|
|