Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 06:38:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
zeek/scripts/policy/protocols/ssl
History
Johanna Amann 95f1565498 Match DPD TLS signature on one-sided connections. 
This commit changes DPD matching for TLS connections. A one-sided match
is enough to enable DPD now.

This commit also removes DPD for SSLv2 connections. SSLv2 connections do
basically no longer happen in the wild. SSLv2 is also really finnicky to
identify correctly - there is very little data required to match it, and
basically all matches today will be false positives. If DPD for SSLv2 is
still desired, the optional signature in policy/protocols/ssl/dpd-v2.sig
can be loaded.

Fixes GH-1952
2022-02-01 16:51:21 +00:00
..
dpd-v2.sig Match DPD TLS signature on one-sided connections. 2022-02-01 16:51:21 +00:00
expiring-certs.zeek Remove trailing whitespace from script files 2021-10-20 09:57:09 -07:00
extract-certs-pem.zeek Deprecate extract-certs-pem.zeek and add log-certs-base64.zeek 2021-06-29 09:45:18 +01:00
heartbleed.zeek Heartbleed: fix substraction order. 2021-03-25 13:41:12 +00:00
known-certs.zeek update uses of "when" in base scripts to include captures 2022-01-07 14:53:33 -08:00
log-certs-base64.zeek Deprecate extract-certs-pem.zeek and add log-certs-base64.zeek 2021-06-29 09:45:18 +01:00
log-hostcerts-only.zeek Change SSL and X.509 logging format 2021-06-29 09:26:43 +01:00
notary.zeek update uses of "when" in base scripts to include captures 2022-01-07 14:53:33 -08:00
ssl-log-ext.zeek Small indentation fixes in ssl-log-ext.zeek 2021-06-30 15:16:49 +01:00
validate-certs.zeek More bro-to-zeek renaming in scripts and other files 2019-05-16 02:36:41 -05:00
validate-ocsp.zeek Change SSL and X.509 logging format 2021-06-29 09:26:43 +01:00
validate-sct.zeek &is_set => &is_assigned 2021-02-04 12:18:46 -08:00
weak-keys.zeek Change SSL and X.509 logging format 2021-06-29 09:26:43 +01:00