Enable SNI by default only if target is a fqdn and -servername not supplied

2015-09-18 13:36:09 -04:00 · 2015-09-18 13:36:09 -04:00 · 5284dda0fb
parent 72e2b4f6e9
commit 5284dda0fb
1 changed files with 4 additions and 1 deletions
--- a/5
+++ b/5
@ -1531,7 +1531,10 @@ if [[ $VERBOSE != 0 ]] ; then
 fi

 SCLIENTARGS="${PARAMS[*]}"
-if [[ $SNI == "True" ]]; then
+# only append the SNI:
+# if the target is a hostname by validating the tld
+# if -servername was not supplied by the user
+if [[ $SNI == "True"  && $sni_target =~ \.[a-z]{1,20}$ && ! $SCLIENTARGS =~ servername ]]; then
    SCLIENTARGS="$SCLIENTARGS -servername $sni_target"
 fi
 debug "sclientargs: $SCLIENTARGS"