SHA256
1
0
forked from pool/sslscan
Commit Graph

48 Commits

Author SHA256 Message Date
Dominique Leuenberger
74aeac0007 Accepting request 1189590 from security
OBS-URL: https://build.opensuse.org/request/show/1189590
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=19
2024-07-25 13:40:14 +00:00
9aa838c6ee - update to 2.1.4:
* Display the full cert chain --show-certificates

OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=44
2024-07-25 11:00:22 +00:00
Ana Guerrero
52feef526d OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=18 2024-02-26 18:49:40 +00:00
OBS User buildservice-autocommit
3a55a5003a Updating link to change in openSUSE:Factory/sslscan revision 18
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=6684e16479a57b6f3239db17b77dcf21
2024-02-26 18:49:40 +00:00
OBS User buildservice-autocommit
2075d371a0 Accepting request 1151796 from security
baserev update by copy to link target

OBS-URL: https://build.opensuse.org/request/show/1151796
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=43
2024-02-26 18:49:40 +00:00
Johannes Weberhofer
48d35add17 Accepting request 1151610 from home:dimstar:rpm4.20:s
Prepare for RPM 4.20

OBS-URL: https://build.opensuse.org/request/show/1151610
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=42
2024-02-26 15:13:53 +00:00
Ana Guerrero
849877969b Accepting request 1142229 from security
OBS-URL: https://build.opensuse.org/request/show/1142229
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=17
2024-01-29 21:32:45 +00:00
Wolfgang Frisch
d58e6da481 Accepting request 1141958 from home:dirkmueller:Factory
- update to 2.1.3:
  * Enable quiet shutdown for scanning
  * Fix Docked build on non-x64 architectures

OBS-URL: https://build.opensuse.org/request/show/1141958
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=40
2024-01-29 11:08:45 +00:00
Ana Guerrero
4fb4d7b518 Accepting request 1128828 from security
OBS-URL: https://build.opensuse.org/request/show/1128828
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=16
2023-11-26 18:37:53 +00:00
8df4c94f73 Accepting request 1128763 from home:dirkmueller:Factory
- update to 2.1.2:
  * Fix certificate and cipher enumeration when unsafe
    renegotiation is required

OBS-URL: https://build.opensuse.org/request/show/1128763
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=38
2023-11-25 22:44:01 +00:00
Ana Guerrero
7bd964ed1b Accepting request 1125005 from security
- update to 2.1.1:
  * Work around several dodgy TLS implementations

  Note that there are also some breaking changes to the XML output, which are
  * Added check for
   * Improve new protocol setup support for STARTTLS: POP3, IMAP, FTP, and

OBS-URL: https://build.opensuse.org/request/show/1125005
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=15
2023-11-13 21:18:33 +00:00
5d07be193d - update to 2.1.1:
* Work around several dodgy TLS implementations
  Note that there are also some breaking changes to the XML output, which are
  * Added check for
   * Improve new protocol setup support for STARTTLS: POP3, IMAP, FTP, and

OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=36
2023-11-10 15:22:03 +00:00
Dominique Leuenberger
0319abe134 Accepting request 1111744 from security
OBS-URL: https://build.opensuse.org/request/show/1111744
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=14
2023-09-20 11:25:30 +00:00
b6e7b7b82e Accepting request 1111337 from home:amanzini:branches:security
- update to 2.1.0:
  *  Build against OpenSSL 3.0 instead of 1.1.0 (credit jtesta)

OBS-URL: https://build.opensuse.org/request/show/1111337
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=34
2023-09-17 09:45:03 +00:00
Dominique Leuenberger
6467659cf1 Accepting request 1079852 from security
OBS-URL: https://build.opensuse.org/request/show/1079852
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=13
2023-04-17 15:41:25 +00:00
4fccfe3d4c Accepting request 1079782 from home:dirkmueller:Factory
- update to 2.0.16:
  * Fix incorret detection of TLSv1.3 on Server 2019
  * Fix incorrect XML certificate output

OBS-URL: https://build.opensuse.org/request/show/1079782
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=32
2023-04-17 07:34:40 +00:00
Dominique Leuenberger
100883edca Accepting request 992247 from security
OBS-URL: https://build.opensuse.org/request/show/992247
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=12
2022-08-02 20:09:36 +00:00
Johannes Weberhofer
b28b5bbf06 Accepting request 992242 from home:dirkmueller:Factory
- update to 2.0.15:
  * Obtain certificate info even if we can't connect properly
  * Strip out https:// from lines in a target file
  * Fix TLSv1.3 detection against Server 2022 (credit jtesta)

  * Add <not-yet-valid> XML element (credit lucacapacci)

OBS-URL: https://build.opensuse.org/request/show/992242
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=30
2022-08-02 12:12:50 +00:00
Dominique Leuenberger
a10f2a26b5 Accepting request 965302 from security
OBS-URL: https://build.opensuse.org/request/show/965302
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=11
2022-03-28 15:00:56 +00:00
5ea049400b Accepting request 965241 from home:dirkmueller:Factory
- update to 2.0.12:
  > Add <not-yet-valid> XML element (credit lucacapacci)

OBS-URL: https://build.opensuse.org/request/show/965241
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=28
2022-03-28 06:41:31 +00:00
Dominique Leuenberger
3bd4855fb6 Accepting request 945303 from security
OBS-URL: https://build.opensuse.org/request/show/945303
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=10
2022-01-10 22:53:30 +00:00
Johannes Weberhofer
0c8ee10593 Accepting request 943827 from home:dirkmueller:Factory
- update to 2.0.11:
  * Add --iana-names option to use IANA/RFC cipher names
  * Improve signature algorithm detection

OBS-URL: https://build.opensuse.org/request/show/943827
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=27
2022-01-10 12:12:21 +00:00
Dominique Leuenberger
386cf09be0 Accepting request 892437 from security
- update to 2.0.10:
  * Add the --connect-timeout option (credit alkalim)
  * Fix a typo in output
  * Warn on TLSv1.1, as it's now deprecated by RFC 8996
  * Fix a bug with LDAP STARTTLS
  * Fix certificate detection on some broken servers
  * Fix missing SCSV Fallback in XML output
  * Don't show server signature algorithms by default
  * Use --show-sigs to display them

OBS-URL: https://build.opensuse.org/request/show/892437
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=9
2021-05-12 17:32:18 +00:00
Johannes Weberhofer
f36561cb0b Accepting request 892305 from home:dirkmueller:Factory
- update to 2.0.10:
  * Add the --connect-timeout option (credit alkalim)
  * Fix a typo in output
  * Warn on TLSv1.1, as it's now deprecated by RFC 8996
  * Fix a bug with LDAP STARTTLS
  * Fix certificate detection on some broken servers
  * Fix missing SCSV Fallback in XML output
  * Don't show server signature algorithms by default
  * Use --show-sigs to display them

OBS-URL: https://build.opensuse.org/request/show/892305
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=25
2021-05-12 09:19:57 +00:00
Dominique Leuenberger
0acd566c4c Accepting request 856864 from security
OBS-URL: https://build.opensuse.org/request/show/856864
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=8
2020-12-18 19:00:04 +00:00
Johannes Weberhofer
f7f7fe0295 Accepting request 856863 from home:weberho:branches:security
- Upgrade to version 2.0.6
  * Add <error> element to XML output
  * Fix the extraneous padding of HTTP responses in XML
  * Update the HTTP request to HTTP/1.1
  * More robust checking the HTTP response is valid
  * Display "No response" when no HTTP response is returned
  * Remove the broken HTTP request scanning option (--http)
  * Fix --targets not working properly
  * Flag certificates in red if CN is the same as issuer

OBS-URL: https://build.opensuse.org/request/show/856863
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=23
2020-12-18 11:20:01 +00:00
Dominique Leuenberger
f61c485a94 Accepting request 838230 from security
OBS-URL: https://build.opensuse.org/request/show/838230
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=7
2020-09-28 12:29:54 +00:00
Johannes Weberhofer
93bddde06c Accepting request 838229 from home:weberho:branches:security
- Upgrade to version 2.0.1
  * Correctly set SNI name when using --targets. Fixes gh#rbsec/sslscan#215

OBS-URL: https://build.opensuse.org/request/show/838229
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=21
2020-09-28 10:19:54 +00:00
Dominique Leuenberger
625134aae9 Accepting request 822398 from security
OBS-URL: https://build.opensuse.org/request/show/822398
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=6
2020-07-24 08:02:53 +00:00
Johannes Weberhofer
6b7acac750 Accepting request 822397 from home:weberho:branches:security
- Upgrade to version 2.0.0
  Version 2 of sslscan includes a major rewrite of the backend scanning code,
  which means that it is no longer reliant on the version of OpenSSL for many
  checks. This means that it is possible to support legacy protocols (SSLv2 and
  SSLv3), as well as supporting TLSv1.3 - regardless of the version of OpenSSL
  that it has been compiled against. It is still recommended to build statically
  where possible, but dynamically built version should be significantly more
  useful.
  Note that there are also some breaking changes to the XML output, which are 
  documented in the readme file.
  This rewrite been made possible largely by the work of jtesta, who has been
  responsible for most of the backend rewrite.
- Cleaned up spec file

OBS-URL: https://build.opensuse.org/request/show/822397
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=19
2020-07-23 12:28:14 +00:00
Johannes Weberhofer
2779045d1d Accepting request 822258 from home:wfrisch:branches:security
- Upgrade to version 2.0.0-beta6
  * Various bugfixes
  * Added -4 and -6 options to force IPv4 and IPv6.
  * Added strength attribute to XML to reflect colouring in stdout
  * Checks for server signature algorithms.
  * Checks for server key exchange groups.
  * Support for SSLv2 and SSLv3 protocol detection regardless of OpenSSL
  * Support for TLSv1.3
  * Support for additional cipher suites.
  * Print curve name and key strength for ECC certs
  * Fix a bug with servers that return incorrect cipher IDs.
  * Add a new "<certificates>" element to the XML output.
  * Remove the "Signature Algorithm:" text and spacing from the XML.
  * Report servers that accept any signature algorithm in the XML
- Rebased fedora-sslscan-patents.patch
- OpenSSL dependency bumped to >= 1.1

OBS-URL: https://build.opensuse.org/request/show/822258
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=18
2020-07-22 15:03:09 +00:00
Dominique Leuenberger
fce4e36397 Accepting request 572014 from security
Simplified requirements

OBS-URL: https://build.opensuse.org/request/show/572014
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=5
2018-02-02 21:23:05 +00:00
Johannes Weberhofer
a52b557180 - Simplified requirements
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=16
2018-02-02 12:35:14 +00:00
Johannes Weberhofer
6b6d2e3028 - Use openssl<1.1 for suse_version >= 1500
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=15
2018-02-01 16:46:40 +00:00
Dominique Leuenberger
cb97ecff5f Accepting request 559797 from security
OBS-URL: https://build.opensuse.org/request/show/559797
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=4
2017-12-29 17:50:31 +00:00
Johannes Weberhofer
3a1070f1b8 Accepting request 559796 from home:weberho:branches:security
- Fix building on factory (use openssl 1.0.0)
- Upgrade to version 1.11.10
  * Support for ChaCha ciphers
  * Add support for STARTTLS on mysql (--starttls-mysql)
  * Display SNI information in XML output
  * Mark SHA-1 certificates as weak

OBS-URL: https://build.opensuse.org/request/show/559796
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=13
2017-12-25 06:37:31 +00:00
Johannes Weberhofer
e48315b885 Accepting request 557927 from home:weberho:branches:security
Fixed building on SLES systems

OBS-URL: https://build.opensuse.org/request/show/557927
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=12
2017-12-18 06:13:36 +00:00
Johannes Weberhofer
42a0468077 Accepting request 557903 from security
rolled back to previous version

OBS-URL: https://build.opensuse.org/request/show/557903
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=11
2017-12-18 05:58:35 +00:00
Johannes Weberhofer
e3ad59bcf9 Accepting request 554947 from home:weberho:branches:security
It would be great if someone could review that version which includes a statically linked openssl version to test for old features.

Strangely the tests occasionally fails on OBS.

OBS-URL: https://build.opensuse.org/request/show/554947
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=10
2017-12-17 08:08:18 +00:00
Dominique Leuenberger
565e912c0e Accepting request 442679 from security
1

OBS-URL: https://build.opensuse.org/request/show/442679
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=3
2016-12-02 15:41:34 +00:00
Johannes Weberhofer
469cc62911 Accepting request 442678 from home:weberho:branches:security
- Upgrade to version 1.11.8
  * Support alternate SNI hostnames (--sni=)
  * Allow building with no support for TLS SCSV Fallback

OBS-URL: https://build.opensuse.org/request/show/442678
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=8
2016-11-29 11:30:21 +00:00
Dominique Leuenberger
3e4e67a650 Accepting request 440725 from security
- SSL_MODE_SEND_FALLBACK_SCSV.patch: Add patch to treat SSL_MODE_SEND_FALLBACK_SCSV conditionally.

OBS-URL: https://build.opensuse.org/request/show/440725
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=2
2016-11-18 21:02:05 +00:00
b058a7bf4b - SSL_MODE_SEND_FALLBACK_SCSV.patch: Add patch to treat SSL_MODE_SEND_FALLBACK_SCSV conditionally.
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=6
2016-11-17 17:25:25 +00:00
686a0bdb1b Accepting request 438033 from home:mhnovell
Package fails to build on openSUSE_13.2 (and 13.1) because it uses SSL_MODE_SEND_FALLBACK_SCSV unconditionally. Apparantly the libopenssl versions on these older systems does not provide this macro.

OBS-URL: https://build.opensuse.org/request/show/438033
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=5
2016-11-17 17:07:39 +00:00
Dominique Leuenberger
2c9c02b430 Accepting request 438012 from security
add to factory

OBS-URL: https://build.opensuse.org/request/show/438012
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=1
2016-11-12 12:01:32 +00:00
4c93bfb109 Accepting request 438006 from home:weberho:branches:security
The latest version can not be compiled with SLE_11 and SLE12 w/o SP, but it brings a lot of great features:
  * Support for
    - STARTTLS: POP3, IMAP, FTP, XMPP
    - PostgreSQL
    - IPv6 addresses
    - TLSv1.1 and TLSv1.2
    - XMPP server-to-server connections
  * Added check for 
    - OpenSSL Heartbleed
    - POODLE
  * Highlight the following issues
    - weak RSA and DHE keys in output
    - SSLv2, SSLv3, RC4 ciphers
    - anonymous ADH and AECDH ciphers
    - weak (n <= 40 bit) and medium (40 < n <= 56 bit)
  * Certificates
    - Display certificate signing algorithm highlighting weak algorithms.
    - Display certificate key strength highlighting weak keys.
    - Flag expired certificates
  * Most secure protocols are scanned first
  * Display cipher details by default

OBS-URL: https://build.opensuse.org/request/show/438006
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=3
2016-10-31 11:09:56 +00:00
Lars Vogdt
9a7675d80c - enable parallel build
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=2
2014-04-27 17:35:50 +00:00
Lars Vogdt
e423dc0c52 osc copypac from project:home:draht package:sslscan revision:1
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=1
2014-04-27 17:31:55 +00:00