Mailing List Archive: ssl_supported_ciphers.nasl and ssl

Can ssl_supported_ciphers.nasl (script_id 21643) be made to run stand alone?

At the moment it is dependent on kb items.

It seems that changing the line
if (!port || !get_port_state(port)) exit(0);
to
if (!port) port = 443;
if (!get_port_state(port)) exit(0);

and changing the line
if (encaps < ENCAPS_SSLv2 || encaps > ENCAPS_TLSv1 ) exit(0);
to
if (encaps && (encaps < ENCAPS_SSLv2 || encaps > ENCAPS_TLSv1 )) exit(0);

is sufficient to allow it to run stand alone.

Secondly, ssl_funcs.inc doesn't include any of the 0x00 0x6x ciphers.
A message in the archive shows these ciphers were included in version 1.2
of ssl_funcs.inc. It looks like the details for ciphers 0x00 0x60 to
0x00 0x66 need to be restored.
_______________________________________________
Plugins-writers mailing list
Plugins-writers@list.nessus.org
http://mail.nessus.org/mailman/listinfo/plugins-writers

On Tue, Jul 25, 2006 at 06:11:42PM +0100, Dennis Jackson wrote:

> Can ssl_supported_ciphers.nasl (script_id 21643) be made to run stand alone?

Sounds like a good idea.

> Secondly, ssl_funcs.inc doesn't include any of the 0x00 0x6x ciphers.
> A message in the archive shows these ciphers were included in version 1.2
> of ssl_funcs.inc. It looks like the details for ciphers 0x00 0x60 to
> 0x00 0x66 need to be restored.

Ah, thanks for pointing this out too.

I just committed changes for these two issues; they should become
available through nessus-update-plugins in the next hour or so.

George
--
theall@tenablesecurity.com
_______________________________________________
Plugins-writers mailing list
Plugins-writers@list.nessus.org
http://mail.nessus.org/mailman/listinfo/plugins-writers