yawast 0.5.0.beta6 → 0.5.0.beta7
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +1 -0
- data/lib/scanner/plugins/http/directory_search.rb +3 -1
- data/lib/scanner/plugins/http/file_presence.rb +3 -1
- data/lib/shared/http.rb +12 -3
- data/lib/version.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 4f046f0314626571128c97bbcf2ff87947f88e66
|
|
4
|
+
data.tar.gz: 8a01a5d54536515a6ab541b54bb9abdeb29f864f
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 865bb32735ba681b546395eaf8c7edf9bd6671d5681a9f8c93a3cf68b36e71fac4b70b2ee1807197dfbd9c96a23160c117589a28a45bbf58dd91c0fc9e457018
|
|
7
|
+
data.tar.gz: aea15cd82a94b9310170b9640278b3e4b34582f6f550685c900bd9eaf544fa6eb93a592c617d5141a644fc361be5ade12035d3f883a5086e14d155751f2cc939
|
data/CHANGELOG.md
CHANGED
|
@@ -17,6 +17,7 @@
|
|
|
17
17
|
* [#98](https://github.com/adamcaudill/yawast/issues/98) - Bug: SWEET32 Test Fails if 3DES Not Support By Latest Server Supported TLS Version
|
|
18
18
|
* [#99](https://github.com/adamcaudill/yawast/issues/99) - Bug: Cloudflare SWEET32 False Positive
|
|
19
19
|
* [#101](https://github.com/adamcaudill/yawast/issues/101) - Bug: SWEET32 False Negative
|
|
20
|
+
* [#103](https://github.com/adamcaudill/yawast/issues/103) - Bug: Scan fails if HEAD isn't supported
|
|
20
21
|
* Various code and other improvements.
|
|
21
22
|
|
|
22
23
|
## 0.4.0 - 2016-11-03
|
|
@@ -96,7 +96,9 @@ module Yawast
|
|
|
96
96
|
@results.push "\tFound Redirect: '#{uri} -> '#{res['Location']}'"
|
|
97
97
|
end
|
|
98
98
|
rescue => e
|
|
99
|
-
|
|
99
|
+
unless e.message.include?('end of file') || e.message.include?('getaddrinfo')
|
|
100
|
+
Yawast::Utilities.puts_error "Error searching for directory '#{uri.path}' (#{e.message})"
|
|
101
|
+
end
|
|
100
102
|
end
|
|
101
103
|
end
|
|
102
104
|
end
|
|
@@ -168,7 +168,9 @@ module Yawast
|
|
|
168
168
|
@results.push "'#{uri.path}' found: #{uri}"
|
|
169
169
|
end
|
|
170
170
|
rescue => e
|
|
171
|
-
|
|
171
|
+
unless e.message.include?('end of file') || e.message.include?('getaddrinfo')
|
|
172
|
+
Yawast::Utilities.puts_error "Error searching for file '#{uri.path}' (#{e.message})"
|
|
173
|
+
end
|
|
172
174
|
end
|
|
173
175
|
end
|
|
174
176
|
end
|
data/lib/shared/http.rb
CHANGED
|
@@ -16,9 +16,18 @@ module Yawast
|
|
|
16
16
|
end
|
|
17
17
|
|
|
18
18
|
def self.head(uri)
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
|
|
19
|
+
begin
|
|
20
|
+
req = get_http(uri)
|
|
21
|
+
req.use_ssl = uri.scheme == 'https'
|
|
22
|
+
req.head(uri.path, get_headers)
|
|
23
|
+
rescue
|
|
24
|
+
#if we get here, the HEAD failed - but GET may work
|
|
25
|
+
#so we silently fail back to using GET instead
|
|
26
|
+
req = get_http(uri)
|
|
27
|
+
req.use_ssl = uri.scheme == 'https'
|
|
28
|
+
res = req.request_get(uri.path, get_headers)
|
|
29
|
+
res
|
|
30
|
+
end
|
|
22
31
|
end
|
|
23
32
|
|
|
24
33
|
def self.get(uri, headers = nil)
|
data/lib/version.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: yawast
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.5.0.
|
|
4
|
+
version: 0.5.0.beta7
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Adam Caudill
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2017-04-
|
|
11
|
+
date: 2017-04-04 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: ssllabs
|