2
0
mirror of https://github.com/mozilla/cipherscan.git synced 2024-11-22 14:23:41 +01:00

Doc + cleanup

This commit is contained in:
Julien Vehent 2013-07-17 15:06:34 -04:00
parent 4f604d048c
commit d55eeae308
2 changed files with 8 additions and 4 deletions

View File

@ -2,8 +2,8 @@
DOBENCHMARK=0
BENCHMARKITER=10
#OPENSSLBIN="/home/ulfr/Code/openssl/apps/openssl"
OPENSSLBIN=$(which openssl)
OPENSSLBIN="/home/ulfr/Code/openssl/apps/openssl"
#OPENSSLBIN=$(which openssl)
REQUEST="GET / HTTP/1.1
Host: $TARGET
@ -22,12 +22,12 @@ verbose() {
test_cipher_on_target() {
local sslcommand=$@
local tmp=$(mktemp)
$sslcommand 1>$tmp 2>/dev/null << EOF
$sslcommand 1>"$tmp" 2>/dev/null << EOF
$REQUEST
EOF
# Parse the result
result=$(grep "New, " $tmp|awk '{print $5}')
rm $tmp
rm "$tmp"
if [ "$result" == '(NONE)' ]; then
verbose "handshake failed, server returned ciphersuite '$result'"
return 1

View File

@ -6,3 +6,7 @@ Run: ./CipherScan.sh www.google.com:443 -v
And watch.
Edit the script if you need more (disable benchmarking by setting DOBENCHMARK to 0).
The newer your version of openssl, the better results you'll get. Older versions
of OpenSSL don't support TLS1.2 ciphers, elliptic curves, etc... Build Your Own!