Bin: fixes the lucky13 check

It apparently works with any cbc cipher and doesn't require tls1
master
Jonathan Hodgson 4 years ago
parent 343f510ad0
commit 865566dd04
  1. 4
      bin/.bin/webtest/verifySSL

@ -70,8 +70,8 @@ check-sweet32(){
check-lucky13(){ check-lucky13(){
local tmpfile="$(mktemp)" local tmpfile="$(mktemp)"
$openssl ciphers -v | grep -i cbc3 | cut -d' ' -f1 | while read cipher; do $openssl ciphers -v | grep -i cbc | cut -d' ' -f1 | while read cipher; do
echo "\$ openssl s_client -tls1 -cipher $cipher -connect ${host}:${port}" >> "$tmpfile" echo "\$ openssl s_client -cipher $cipher -connect ${host}:${port}" >> "$tmpfile"
echo "" | $openssl s_client -tls1 -cipher "$cipher" -connect "${host}:${port}" >> "$tmpfile" 2>&1 echo "" | $openssl s_client -tls1 -cipher "$cipher" -connect "${host}:${port}" >> "$tmpfile" 2>&1
if [ "$?" -eq 0 ]; then if [ "$?" -eq 0 ]; then
cat "$tmpfile" cat "$tmpfile"

Loading…
Cancel
Save