Hi, *** Reindl Harald wrote:
> sorry, but that is pure nonsense Ja, ja...:) Danke auf jeden fall fürs reporten... Ich kann das leider nicht reproduzieren. Laut deiner Mail geht da aber in secpod_ssl_ciphers_setting.nasl irgendwas beim setzen der Preferenzes schief. Welche Revision hat secpod_ssl_ciphers_setting.nasl bei dir? Kannst du mir bitte noch einen Gefallen tun: GSA -> Die benutze Config ansehen -> Darin nach "SSL Cipher Settings" suchen. Wie sieht das bei dir aus? So wie auf 'http://plugins.openvas.org/gsa.png'? Wenn nicht, mach mir bitte einen Screenshot. Ich habe auch noch ein secpod_ssl_ciphers_setting.nasl an diese Mail angehängt. Darin habe ich nur einige Variablen umbenannt. Wenn du damit auch nochmal testen könntest... Ja, gut, sind dann schon 2 Gefallen...:) Viele Grüße Micha -- Michael Meyer OpenPGP Key: 0xAF069E9152A6EFA6 http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
############################################################################### # OpenVAS Vulnerability Test # $Id: secpod_ssl_ciphers_setting.nasl 3767 2016-07-27 17:00:23Z mime $ # # SSL Cipher Settings # # Authors: # Veerendra GG <[email protected]> # # Copyright: # Copyright (c) 2010 SecPod, http://www.secpod.com # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License version 2 # (or any later version), as published by the Free Software Foundation. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. ############################################################################### tag_summary = "This plugin Set SSL Cipher Settings. This plugin will gets the ssl cipher settings from user preference and sets into the KB."; include("secpod_ssl_ciphers.inc"); cipher_arrays = make_list( keys( sslv2_ciphers ), keys( sslv3_ciphers ), keys( tlsv1_ciphers ), keys( tlsv1_2_ciphers ) ); if(description) { script_id(900238); script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:N"); script_version("$Revision: 3767 $"); script_tag(name:"last_modification", value:"$Date: 2016-07-27 19:00:23 +0200 (Mi, 27. Jul 2016) $"); script_tag(name:"creation_date", value:"2010-04-16 11:02:50 +0200 (Fri, 16 Apr 2010)"); script_tag(name:"cvss_base", value:"0.0"); script_name("SSL Cipher Settings"); script_summary("Get SSL Cipher Settings"); script_category(ACT_SETTINGS); script_tag(name:"qod_type", value:"remote_banner"); script_copyright("Copyright (C) 2010 SecPod"); script_family("Settings"); script_add_preference(name:"List SSL Supported Ciphers", type:"checkbox", value:"no"); foreach c ( keys( cipher_arrays ) ) { v = FALSE; n = split( cipher_arrays[c], sep:" : ", keep:FALSE ); if( isnull( n[0] ) || isnull( n[1] ) ) continue; if( "Weak cipher" >< n[1] ) v = "Weak cipher;No cipher;Medium cipher;Strong cipher"; else if( "No cipher" >< n[1] ) v = "No cipher;Weak cipher;Medium cipher;Strong cipher"; else if( "Medium cipher" >< n[1] ) v = "Medium cipher;No cipher;Weak cipher;Strong cipher"; else if( "Strong cipher" >< n[1] ) v = "Strong cipher;No cipher;Weak cipher;Medium cipher"; else continue; if( v ) script_add_preference( name:n[0], type:"radio", value:v ); } script_tag(name : "summary" , value : tag_summary); exit(0); } ## Get SSL Supported Ciphers user preference ssl_supported_ciphers_enabled = script_get_preference("List SSL Supported Ciphers"); if(ssl_supported_ciphers_enabled){ ## iSet SSL Supported Ciphers into the KB set_kb_item(name: "SSL/SupportedCiphers/Enabled", value: ssl_supported_ciphers_enabled); } foreach ca ( keys( cipher_arrays ) ) { w = split( cipher_arrays[ca], sep:" : ", keep:FALSE ); if( isnull( w[0] ) || isnull( w[1] ) ) continue; t = script_get_preference( w[0] ); if( ! t || t == "" ) continue; if( t >!< w[1] ) set_kb_item( name:'ssl/ciphers/override/' + w[0] + ' : ' + w[1], value: t ); }
_______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
