mirror of
https://github.com/mozilla/cipherscan.git
synced 2024-11-25 23:43:42 +01:00
Enable SNI by default only if target is a fqdn and -servername not supplied
This commit is contained in:
parent
9952d90cf4
commit
7a697e28bc
@ -1485,7 +1485,10 @@ if [[ $VERBOSE != 0 ]] ; then
|
||||
fi
|
||||
|
||||
SCLIENTARGS="${PARAMS[*]}"
|
||||
if [[ $SNI == "True" ]]; then
|
||||
# only append the SNI:
|
||||
# if the target is a hostname by validating the tld
|
||||
# if -servername was not supplied by the user
|
||||
if [[ $SNI == "True" && $sni_target =~ \.[a-z]{1,20}$ && ! $SCLIENTARGS =~ servername ]]; then
|
||||
SCLIENTARGS="$SCLIENTARGS -servername $sni_target"
|
||||
fi
|
||||
debug "sclientargs: $SCLIENTARGS"
|
||||
|
Loading…
Reference in New Issue
Block a user