forked from ioerror/sslscan
-
Notifications
You must be signed in to change notification settings - Fork 1
/
TODO
30 lines (26 loc) · 1.32 KB
/
TODO
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
Fix the certificate formatting (prefix it with whitespace)
Add support for SOCKS5 proxy (or audit for 'usewithtor')
Add support for SNI:
http://en.wikipedia.org/wiki/Server_Name_Indication
Update man page
Add tests for a given set of hosts that are known to be interesting
Add STARTTLS support for LDAP:
http://www.rfc-editor.org/rfc/rfc2830.txt
Make a Debian package
Merge the Windows port into tip: http://code.google.com/p/sslscan-win/
Send diff from 1.8.2 to the upstream developer
Ensure that output is highlighted for dangerous ciphers (blink, blink)
Throw up sirens if ssl2 is enabled
ciphers from the LOW/EXP/eNULL category are supported for any protocol
renegotiation is allowed on tlsv1 (maybe check if TRACE is supported if it's an http server)
Fix segfault when working with OpenSSL 1.0.0a:
Program received signal SIGSEGV, Segmentation fault.
0x0000000000430052 in BN_num_bits ()
(gdb) bt
#0 0x0000000000430052 in BN_num_bits ()
#1 0x000000000040511f in getCertificate (options=0x7fff13daead0)
at sslscan.c:1388
#2 0x0000000000405d58 in testHost (options=0x7fff13daead0) at sslscan.c:1648
#3 0x0000000000406bf6 in main (argc=5, argv=0x7fff13daee58) at sslscan.c:1928
We should explictly check for things that may be NULL; it is likely the cause
of the above error.