Nmap Development mailing list archives
Re: SSL certificate key length in ssl-cert.nse
From: David Fifield <david () bamsoftware com>
Date: Fri, 1 Oct 2010 17:08:22 -0600
On Fri, Oct 01, 2010 at 05:54:54PM -0400, Matt Selsky wrote:
Has anyone patched ssl-cert.nse to grab the length of the public key? I need to start checking my campus for 1024-bit keys... It looks like nse_ssl_cert.cc doesn't yet have support for getting key length information. Is such a function needed, or can I get the information a different way?
Yes, you should just add whatever you need to l_get_ssl_certificate. It
will mean finding the appropriate OpenSSL function, then storing the
result of calling the function in the returned table.
You can see an example of getting a key size in the OpenSSL source code,
in the file apps/s_client.c. ("Server public key is %d bit\n".)
David Fifield
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Current thread:
- SSL certificate key length in ssl-cert.nse Matt Selsky (Oct 01)
- Re: SSL certificate key length in ssl-cert.nse David Fifield (Oct 01)
- Re: SSL certificate key length in ssl-cert.nse Matt Selsky (Oct 01)
- Re: SSL certificate key length in ssl-cert.nse David Fifield (Oct 04)
- Re: SSL certificate key length in ssl-cert.nse Matt Selsky (Oct 18)
- Re: SSL certificate key length in ssl-cert.nse David Fifield (Oct 18)
- Re: SSL certificate key length in ssl-cert.nse Matt Selsky (Oct 19)
- Re: SSL certificate key length in ssl-cert.nse David Fifield (Oct 19)
- Re: SSL certificate key length in ssl-cert.nse Matt Selsky (Oct 20)
- Re: SSL certificate key length in ssl-cert.nse David Fifield (Oct 20)
- Re: SSL certificate key length in ssl-cert.nse Matt Selsky (Oct 01)
- Re: SSL certificate key length in ssl-cert.nse David Fifield (Oct 01)