Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [NSE] SSLv3/TLSv1 cipher and compression algorithm enumeration script

From: Fyodor <fyodor () insecure org>
Date: Mon, 22 Feb 2010 21:54:02 -0800
On Mon, Feb 22, 2010 at 10:00:14PM -0600, Mak Kolybabi wrote:


I now do incremental parsing, and that command line produces results as
expected. As an aside, I often segfault ncat with:


Great find!


I agree that the name should be changed. Maybe ssl-enum-ciphers.


I dislike that name on the basis that it also enumerates compression algorithms.
Perhaps ssl-enum-algorithms?


While it is true that it enumerates compressors as well as ciphers,
sometimes we don't have room to be comprehensive in the filename.  And
I think most Nmap users will be most interested in the ciphers, so I
think that name (ssl-enum-ciphers) is OK.  Your example in the nsedoc
shows 18 ciphers, and no compressers (except "uncompressed").  But a
different name is fine too. ssl-enum-algorithms may be a bit too
broad--I would have an easier time guessing the purpose of -ciphers.


I've rewritten the description to reflect that I now use a better algorithm that
was suggested to me, which is *way* faster.


Yay!

Cheers,
-F
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: