Fwd: Re: NSE: Need advice on pulling SSL cert used for TLS connection over SMTP port 25

[Tom Sellers <nmap () fadedcode net>]

I  have tested this script further with more targets and from both Windows and Linux.
Could it be reviewed for inclusion? Both the patch and full file are attached.

Thanks,

Tom

-------- Original Message --------
Tom Sellers wrote:
> Patrick Donnelly wrote:
>
> > Your patch was nearly correct. The problem was that the connected
> > socket id (udata->nsiod) was replaced by a new one (because the
> > general case is we are making a brand new connection).
> > nsock_reconnect_ssl requires a socket already open. I have added a new
> > socket method, reconnect_ssl, that will allow you to remake the socket
> > with ssl. The patch and a test script are attached. If no one has any
> > complaints I'll apply this patch sometime in the next couple days.
>
> Patrick,
>
>     Thanks very much for looking at and working on this.  The code
> you wrote works great!  I will complete my modifications to the 
> ssl-cert.nse
> script and submit it for review.
>
>
> Thanks again!


I have modified the ssl-cert.nse script so that it supports grabbing
SSL cert information from TLS enabled SMTP and SMTP Submission services.
The changes depend upon the code updates made by Patrick.

I have attached both a copy of the entire ssl-cert.nse as well as a
diff file.  Please review the changes for inclusion.

Thanks again!

Tom

Attachment: ssl-cert.nse
Description:

Attachment: support.tls_ssl-cert.diff
Description:

Attachment: Attached Message Part
Description:

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org