@grin @sullybiker The main problem with #shell scripts is that they’re glue for other commands that may or may not be installed and may or may not be the same as those used by the author.
It’s why #dehydrated has so much logic detecting the installed flavor of awk, sed, grep, diff, et al. “Portable” shell is like portable #C—riddled with brittle environmental tests (thus begetting things like #GNU #Autotools).
Even #testssl admitted defeat and can run from a #Docker #container now.
#testssl.sh: On Wednesday there'll be in 3.2rc2 a change which might break things in postprocessors which use JSON/CSV.
If you're using #docker images for #testssl.sh you should do a "git pull".
#musl libc seems to have performance problems wrt #glibc .
Thanks to polarathene (https://github.com/drwetter/testssl.sh/issues/2299)
The forward secrecy section of #testssl.sh now shows also the supported signature algorithms (David); shown here with a bad and a good example:
#testssl is a #SSL testing script.
testssl.sh is a portable shell script that tests an endpoint for its #TLS/SSL #security. testssl.sh finds the supported ciphers and protocols, and tests for common security bugs. testssl.sh can be configured to only run certain tests, and supports multiple output formats, including machine readible #CSV and #JSON.
Website 🔗️: https://testssl.sh/
apt 📦️: testssl.sh
Remarkable security bug (and fix) for #testssl.sh
Eventually time has come to do the final 3.0 release of #testssl.sh.
Get it, use it, enjoy!