Penetration Testing mailing list archives
remote debian/ubuntu blacklist key checkers [ssl - found, ssh -found, openvpn - ?]
From: Jacky Jack <jacksonsmth698 () gmail com>
Date: Fri, 17 Sep 2010 01:32:39 +0800
Just only one is needed - OpenVPN? ---------- Forwarded message ---------- From: Cody Tubbs Date: Wed, Sep 15, 2010 at 2:17 AM Subject: Re: remote debian/ubuntu blacklist key checkers http://packetstormsecurity.com/UNIX/scanners/haxssl.tgz /// File Name: haxssl.tgz Description: This Ruby code will test a specified Host's SSL certificate against the Debian-based blacklist of keys (RSA 2048 and DSA 1024) generated during the period where openssl on Debian-based installs suffered from a weakness in random number generation. Note that the blacklist is embedded in the code so the file is about 23 MB. Author: Cody Tubbs Related File: dsa-1571-1.txt File Size: 13052186 Related CVE(s): CVE-2008-0166 Last Modified: May 29 14:12:08 2008 MD5 Checksum: 96666f341f89b312294862723156679c -- ------------------------------------------------------ Cody Tubbs -Sr. Network & Security Engineer. -Certified Master Linux Administrator (BB4.0) On Tue, Sep 14, 2010 at 6:41 PM, Jacky Jack <jacksonsmth698 () gmail com> wrote:
Hello I found this site: serversniff.net http://serversniff.net/sshreport.php http://serversniff.net/sslcert.php I know we check locally with ssh-vulnkey, ssl-vulnkey, and openvpn-vulnkey. Are there any equivalent offline scripts to test blacklist keys of SSH - SSL - OpenVPN of a remote server? I know that there are few for ssh - debian_openssh_key_tester.rb . I've been searching ones for SSL and OpenVPN. Thank you.
------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- remote debian/ubuntu blacklist key checkers [ssl - found, ssh -found, openvpn - ?] Jacky Jack (Sep 16)