SHA256
1
0
forked from pool/sslscan
Commit Graph

30 Commits

Author SHA256 Message Date
Dominique Leuenberger
a10f2a26b5 Accepting request 965302 from security
OBS-URL: https://build.opensuse.org/request/show/965302
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=11
2022-03-28 15:00:56 +00:00
5ea049400b Accepting request 965241 from home:dirkmueller:Factory
- update to 2.0.12:
  > Add <not-yet-valid> XML element (credit lucacapacci)

OBS-URL: https://build.opensuse.org/request/show/965241
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=28
2022-03-28 06:41:31 +00:00
Dominique Leuenberger
3bd4855fb6 Accepting request 945303 from security
OBS-URL: https://build.opensuse.org/request/show/945303
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=10
2022-01-10 22:53:30 +00:00
Johannes Weberhofer
0c8ee10593 Accepting request 943827 from home:dirkmueller:Factory
- update to 2.0.11:
  * Add --iana-names option to use IANA/RFC cipher names
  * Improve signature algorithm detection

OBS-URL: https://build.opensuse.org/request/show/943827
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=27
2022-01-10 12:12:21 +00:00
Dominique Leuenberger
386cf09be0 Accepting request 892437 from security
- update to 2.0.10:
  * Add the --connect-timeout option (credit alkalim)
  * Fix a typo in output
  * Warn on TLSv1.1, as it's now deprecated by RFC 8996
  * Fix a bug with LDAP STARTTLS
  * Fix certificate detection on some broken servers
  * Fix missing SCSV Fallback in XML output
  * Don't show server signature algorithms by default
  * Use --show-sigs to display them

OBS-URL: https://build.opensuse.org/request/show/892437
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=9
2021-05-12 17:32:18 +00:00
Johannes Weberhofer
f36561cb0b Accepting request 892305 from home:dirkmueller:Factory
- update to 2.0.10:
  * Add the --connect-timeout option (credit alkalim)
  * Fix a typo in output
  * Warn on TLSv1.1, as it's now deprecated by RFC 8996
  * Fix a bug with LDAP STARTTLS
  * Fix certificate detection on some broken servers
  * Fix missing SCSV Fallback in XML output
  * Don't show server signature algorithms by default
  * Use --show-sigs to display them

OBS-URL: https://build.opensuse.org/request/show/892305
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=25
2021-05-12 09:19:57 +00:00
Dominique Leuenberger
0acd566c4c Accepting request 856864 from security
OBS-URL: https://build.opensuse.org/request/show/856864
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=8
2020-12-18 19:00:04 +00:00
Johannes Weberhofer
f7f7fe0295 Accepting request 856863 from home:weberho:branches:security
- Upgrade to version 2.0.6
  * Add <error> element to XML output
  * Fix the extraneous padding of HTTP responses in XML
  * Update the HTTP request to HTTP/1.1
  * More robust checking the HTTP response is valid
  * Display "No response" when no HTTP response is returned
  * Remove the broken HTTP request scanning option (--http)
  * Fix --targets not working properly
  * Flag certificates in red if CN is the same as issuer

OBS-URL: https://build.opensuse.org/request/show/856863
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=23
2020-12-18 11:20:01 +00:00
Dominique Leuenberger
f61c485a94 Accepting request 838230 from security
OBS-URL: https://build.opensuse.org/request/show/838230
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=7
2020-09-28 12:29:54 +00:00
Johannes Weberhofer
93bddde06c Accepting request 838229 from home:weberho:branches:security
- Upgrade to version 2.0.1
  * Correctly set SNI name when using --targets. Fixes gh#rbsec/sslscan#215

OBS-URL: https://build.opensuse.org/request/show/838229
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=21
2020-09-28 10:19:54 +00:00
Dominique Leuenberger
625134aae9 Accepting request 822398 from security
OBS-URL: https://build.opensuse.org/request/show/822398
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=6
2020-07-24 08:02:53 +00:00
Johannes Weberhofer
6b7acac750 Accepting request 822397 from home:weberho:branches:security
- Upgrade to version 2.0.0
  Version 2 of sslscan includes a major rewrite of the backend scanning code,
  which means that it is no longer reliant on the version of OpenSSL for many
  checks. This means that it is possible to support legacy protocols (SSLv2 and
  SSLv3), as well as supporting TLSv1.3 - regardless of the version of OpenSSL
  that it has been compiled against. It is still recommended to build statically
  where possible, but dynamically built version should be significantly more
  useful.
  Note that there are also some breaking changes to the XML output, which are 
  documented in the readme file.
  This rewrite been made possible largely by the work of jtesta, who has been
  responsible for most of the backend rewrite.
- Cleaned up spec file

OBS-URL: https://build.opensuse.org/request/show/822397
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=19
2020-07-23 12:28:14 +00:00
Johannes Weberhofer
2779045d1d Accepting request 822258 from home:wfrisch:branches:security
- Upgrade to version 2.0.0-beta6
  * Various bugfixes
  * Added -4 and -6 options to force IPv4 and IPv6.
  * Added strength attribute to XML to reflect colouring in stdout
  * Checks for server signature algorithms.
  * Checks for server key exchange groups.
  * Support for SSLv2 and SSLv3 protocol detection regardless of OpenSSL
  * Support for TLSv1.3
  * Support for additional cipher suites.
  * Print curve name and key strength for ECC certs
  * Fix a bug with servers that return incorrect cipher IDs.
  * Add a new "<certificates>" element to the XML output.
  * Remove the "Signature Algorithm:" text and spacing from the XML.
  * Report servers that accept any signature algorithm in the XML
- Rebased fedora-sslscan-patents.patch
- OpenSSL dependency bumped to >= 1.1

OBS-URL: https://build.opensuse.org/request/show/822258
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=18
2020-07-22 15:03:09 +00:00
Dominique Leuenberger
fce4e36397 Accepting request 572014 from security
Simplified requirements

OBS-URL: https://build.opensuse.org/request/show/572014
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=5
2018-02-02 21:23:05 +00:00
Johannes Weberhofer
a52b557180 - Simplified requirements
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=16
2018-02-02 12:35:14 +00:00
Johannes Weberhofer
6b6d2e3028 - Use openssl<1.1 for suse_version >= 1500
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=15
2018-02-01 16:46:40 +00:00
Dominique Leuenberger
cb97ecff5f Accepting request 559797 from security
OBS-URL: https://build.opensuse.org/request/show/559797
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=4
2017-12-29 17:50:31 +00:00
Johannes Weberhofer
3a1070f1b8 Accepting request 559796 from home:weberho:branches:security
- Fix building on factory (use openssl 1.0.0)
- Upgrade to version 1.11.10
  * Support for ChaCha ciphers
  * Add support for STARTTLS on mysql (--starttls-mysql)
  * Display SNI information in XML output
  * Mark SHA-1 certificates as weak

OBS-URL: https://build.opensuse.org/request/show/559796
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=13
2017-12-25 06:37:31 +00:00
Johannes Weberhofer
e48315b885 Accepting request 557927 from home:weberho:branches:security
Fixed building on SLES systems

OBS-URL: https://build.opensuse.org/request/show/557927
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=12
2017-12-18 06:13:36 +00:00
Johannes Weberhofer
42a0468077 Accepting request 557903 from security
rolled back to previous version

OBS-URL: https://build.opensuse.org/request/show/557903
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=11
2017-12-18 05:58:35 +00:00
Johannes Weberhofer
e3ad59bcf9 Accepting request 554947 from home:weberho:branches:security
It would be great if someone could review that version which includes a statically linked openssl version to test for old features.

Strangely the tests occasionally fails on OBS.

OBS-URL: https://build.opensuse.org/request/show/554947
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=10
2017-12-17 08:08:18 +00:00
Dominique Leuenberger
565e912c0e Accepting request 442679 from security
1

OBS-URL: https://build.opensuse.org/request/show/442679
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=3
2016-12-02 15:41:34 +00:00
Johannes Weberhofer
469cc62911 Accepting request 442678 from home:weberho:branches:security
- Upgrade to version 1.11.8
  * Support alternate SNI hostnames (--sni=)
  * Allow building with no support for TLS SCSV Fallback

OBS-URL: https://build.opensuse.org/request/show/442678
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=8
2016-11-29 11:30:21 +00:00
Dominique Leuenberger
3e4e67a650 Accepting request 440725 from security
- SSL_MODE_SEND_FALLBACK_SCSV.patch: Add patch to treat SSL_MODE_SEND_FALLBACK_SCSV conditionally.

OBS-URL: https://build.opensuse.org/request/show/440725
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=2
2016-11-18 21:02:05 +00:00
b058a7bf4b - SSL_MODE_SEND_FALLBACK_SCSV.patch: Add patch to treat SSL_MODE_SEND_FALLBACK_SCSV conditionally.
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=6
2016-11-17 17:25:25 +00:00
686a0bdb1b Accepting request 438033 from home:mhnovell
Package fails to build on openSUSE_13.2 (and 13.1) because it uses SSL_MODE_SEND_FALLBACK_SCSV unconditionally. Apparantly the libopenssl versions on these older systems does not provide this macro.

OBS-URL: https://build.opensuse.org/request/show/438033
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=5
2016-11-17 17:07:39 +00:00
Dominique Leuenberger
2c9c02b430 Accepting request 438012 from security
add to factory

OBS-URL: https://build.opensuse.org/request/show/438012
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sslscan?expand=0&rev=1
2016-11-12 12:01:32 +00:00
4c93bfb109 Accepting request 438006 from home:weberho:branches:security
The latest version can not be compiled with SLE_11 and SLE12 w/o SP, but it brings a lot of great features:
  * Support for
    - STARTTLS: POP3, IMAP, FTP, XMPP
    - PostgreSQL
    - IPv6 addresses
    - TLSv1.1 and TLSv1.2
    - XMPP server-to-server connections
  * Added check for 
    - OpenSSL Heartbleed
    - POODLE
  * Highlight the following issues
    - weak RSA and DHE keys in output
    - SSLv2, SSLv3, RC4 ciphers
    - anonymous ADH and AECDH ciphers
    - weak (n <= 40 bit) and medium (40 < n <= 56 bit)
  * Certificates
    - Display certificate signing algorithm highlighting weak algorithms.
    - Display certificate key strength highlighting weak keys.
    - Flag expired certificates
  * Most secure protocols are scanned first
  * Display cipher details by default

OBS-URL: https://build.opensuse.org/request/show/438006
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=3
2016-10-31 11:09:56 +00:00
Lars Vogdt
9a7675d80c - enable parallel build
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=2
2014-04-27 17:35:50 +00:00
Lars Vogdt
e423dc0c52 osc copypac from project:home:draht package:sslscan revision:1
OBS-URL: https://build.opensuse.org/package/show/security/sslscan?expand=0&rev=1
2014-04-27 17:31:55 +00:00