Commit Graph

96 Commits (48cd65e6e27bb0ee3145232c6bb23d5f54feee94)

Author SHA1 Message Date
aeris 48cd65e6e2 Fix some bugs 2017-01-29 15:07:40 +01:00
aeris 5c08e8c44b Encapsulate certificate/chain 2017-01-23 22:34:12 +01:00
aeris 253c814119 awesome_print helps for debugging TLS hell 2017-01-22 20:09:02 +01:00
aeris d1efc0ec07 Verify certificates during checks 2017-01-22 20:08:08 +01:00
aeris e28b857213 Certificate trust chain check 2017-01-22 20:07:16 +01:00
aeris 3d12eaacea Better output for supported methods/ciphers 2017-01-22 20:05:21 +01:00
aeris 199df56501 Re-enable CHACHA20+POLY1305 2017-01-22 20:04:35 +01:00
aeris a97668a5f8 Fetch curves preference 2017-01-07 16:21:16 +01:00
aeris d92523e4f2 Improving output 2017-01-07 02:30:35 +01:00
aeris f1860ab3ed Refactor TLS server 2017-01-07 01:26:48 +01:00
aeris 61032231b2 Handle case of multiple certificates 2017-01-06 21:11:05 +01:00
aeris 845626ee45 Refactor some checks 2017-01-06 21:10:26 +01:00
aeris a8057ce1ec Raise non TLS exception to help debug 2017-01-02 17:22:40 +01:00
aeris d0160f1067 Status helper 2017-01-02 17:21:54 +01:00
aeris 52a19f8c35 TLS server for testing 2017-01-02 11:22:18 +01:00
aeris 0c3bda1467 Don't check for supported curves if cipher not supported at all 2016-12-17 14:48:56 +01:00
aeris bd67ce8347 Refactor FALLBACK_SCSV 2016-12-17 14:47:25 +01:00
aeris 0f67db070b Add X25519 to supported ECC curves 2016-12-17 14:45:02 +01:00
aeris 5dbf67e0d0 Better and more concise logging 2016-12-17 14:44:18 +01:00
aeris e39b7670f1 Fix AEAD and weak key checks 2016-12-17 14:41:38 +01:00
aeris ad7d8287a8 Better display for supported ciphers 2016-12-17 14:41:02 +01:00
aeris dbc58944ac Check for PSK and SRP ciphers 2016-12-17 14:40:22 +01:00
aeris 299725996b Display curve for ECC key 2016-12-17 14:39:43 +01:00
aeris 0f45195170 Remove trailing score 2016-12-17 14:38:35 +01:00
aeris 7ec4b5a45f Update patches 2016-12-17 14:37:43 +01:00
aeris a212aa0711 Bad exception handling 2016-11-17 01:28:26 +01:00
aeris f209e17f5d Check for must_staple cert extension 2016-11-17 01:18:24 +01:00
aeris 8a1c4f8856 Check for TLS_FALLBACK_SCSV 2016-11-17 01:18:17 +01:00
aeris e604c11e13 Refactor test checks 2016-11-17 00:53:29 +01:00
aeris b5e828a139 Fix test for ECDH curves 2016-11-11 17:49:57 +01:00
aeris 2d014181b4 Remove score 2016-11-11 17:36:01 +01:00
aeris 5c3a32396d Separate ECC from RSA for key status 2016-11-11 16:59:33 +01:00
aeris 04ae17945d Test for ECC curves support 2016-11-11 16:36:49 +01:00
aeris 2c3fdf033b New servers for regular analysis 2016-11-11 11:08:20 +01:00
aeris 4d3e52a188 Fix error when multiple server results 2016-11-11 11:07:53 +01:00
aeris d043c3db4e 3DES is error (sweet32) 2016-11-11 11:07:04 +01:00
aeris adda7570ad Upgrade rake 2016-11-11 11:03:29 +01:00
aeris 586d6585fc Upgrade OpenSSL & Ruby 2016-11-11 11:03:09 +01:00
Aeris e46a1c14c5 Override TLS version **and** ciphers for HTTParty
`set_params` override everything with default parameters if not provided
So if ciphers not specified, reset to the default hardcoded ones
See https://github.com/ruby/ruby/blob/v2_3_0/ext/openssl/lib/openssl/ssl.rb#L124
2016-05-11 18:20:41 +02:00
Aeris c34802c7ec Better error handling 2016-05-10 17:23:15 +02:00
Aeris 6f0a193651 More hosts 2016-05-10 17:22:58 +02:00
Aeris 41cdbaa83f More unit tests (SMTP) 2016-05-06 21:54:30 +02:00
Aeris f1c14eef39 More unit tests (XMPP) 2016-05-06 21:27:02 +02:00
Aeris 5aa9a975fe More unit tests (HTTPS) 2016-05-06 19:59:18 +02:00
Aeris a2c38b05b0 Unit tests 2016-05-03 19:57:34 +02:00
Aeris eb82f8e1ae Check for MX and not directly the IP for SMTP 2016-05-03 19:53:07 +02:00
Aeris 1a7b7206e0 Rename dh key access patch 2016-04-26 19:21:32 +02:00
Aeris 90a5469eb1 Enable EXPORT ciphers 2016-04-26 19:21:15 +02:00
Aeris f3d70d1daf Add details for ciphers 2016-04-26 19:20:30 +02:00
Aeris 2c7ed5307e Support CHACHA20+POLY1305 thanks to CloudFlare patch 2016-04-04 21:15:17 +02:00