@@ -28,16 +28,16 @@ def sslscan_command(self):
2828 return '%s --no-color {host}:{port}' % self ._sslscan_path
2929
3030 def test_sslv2 (self ):
31- return '%s s_client -connect {host}:{port} -ssl2' % self ._openssl_path
31+ return '%s s_client -connect {host}:{port} -ssl2 -servername {host} ' % self ._openssl_path
3232
3333 def test_sslv3 (self ):
34- return '%s s_client -connect {host}:{port} -ssl3' % self ._openssl_path
34+ return '%s s_client -connect {host}:{port} -ssl3 -servername {host} ' % self ._openssl_path
3535
3636 def test_tls1 (self ):
37- return '%s s_client -tls1 -connect {host}:{port}' % self ._openssl_path
37+ return '%s s_client -tls1 -connect {host}:{port} -servername {host} ' % self ._openssl_path
3838
3939 def test_weak_cipher (self ):
40- return '%s s_client -{tls} -cipher \' {cipher}\' -connect {host}:{port}' % self ._openssl_path
40+ return '%s s_client -{tls} -cipher \' {cipher}\' -connect {host}:{port} -servername {host} ' % self ._openssl_path
4141
4242 def recon (self ):
4343 return '%s -T4 -sV --top-ports 25 {host}' % self ._nmap_path
@@ -49,7 +49,7 @@ def test_http_redirect(self):
4949 return '%s -m 10 -ksv http://{host}' % self ._curl_path
5050
5151 def test_self_signed_renegotiation (self ):
52- return '%s s_client -connect {host}:{port}' % self ._openssl_path
52+ return '%s s_client -connect {host}:{port} -servername {host} ' % self ._openssl_path
5353
5454
5555class Finding :
@@ -250,7 +250,7 @@ def _test_weak_cipher(self, tls, ciphers):
250250
251251 for cipher in ciphers :
252252 params_tls_cipher = dict (self ._params , tls = tls , cipher = cipher )
253- title = 'Evidence using weak cipher {tls} ({cipher}) on {host} port {port}:' .format (** params_tls_cipher )
253+ title = 'Evidence using weak cipher ({cipher}) on {host} port {port}:' .format (** params_tls_cipher )
254254 cmd = self ._commands .test_weak_cipher ().format (** params_tls_cipher )
255255
256256 print '## %s' % title
0 commit comments