Skip to content

Adding Vulnerability Scans to Scan#453

Open
anniephan wants to merge 9 commits intocloudflare:masterfrom
anniephan:vulnerabilityScan
Open

Adding Vulnerability Scans to Scan#453
anniephan wants to merge 9 commits intocloudflare:masterfrom
anniephan:vulnerabilityScan

Conversation

@anniephan
Copy link
Copy Markdown
Contributor

@anniephan anniephan commented Dec 7, 2015

Part of https://github.com/cloudflare/cfssl/wiki/Adding-Vulnerability-scaning-to-Scan. Extends CFSSL Scan to scan a host for vulnerability to Heartbleed using https://github.com/FiloSottile/Heartbleed.

0xhaven
0xhaven reviewed Dec 7, 2015
View reviewed changes
Comment thread scan/vulnerability.go Outdated
Copy link
Copy Markdown

@0xhaven 0xhaven Dec 7, 2015

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It's assumed that hostname will never have a scheme.

Copy link
Copy Markdown
Contributor Author

@anniephan anniephan Dec 8, 2015

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ah, ok. I'll be sure to take that out.

Copy link
Copy Markdown
Contributor

@j-delaney j-delaney Dec 9, 2015

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do you need some err handling after this?

@anniephan anniephan changed the title Adding Heartbleed Detection to Scan Adding Vulnerability Scans to Scan Dec 9, 2015
codyli520
codyli520 reviewed Dec 9, 2015
View reviewed changes
Comment thread scan/vulnerability.go Outdated
Copy link
Copy Markdown
Contributor

@codyli520 codyli520 Dec 9, 2015

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

looks like Travis failed here, since this function name's first letter is capitalized, add a comment above it or uncapitalized it. Reference: http://www.goinggo.net/2014/03/exportedunexported-identifiers-in-go.html

Copy link
Copy Markdown
Contributor Author

@anniephan anniephan Dec 9, 2015

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ah, yes. I'll get to that, thanks.

0xhaven
0xhaven reviewed Dec 18, 2015
View reviewed changes
Comment thread scan/vulnerability.go Outdated
Copy link
Copy Markdown

@0xhaven 0xhaven Dec 18, 2015

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

All these grade = Bad can be removed and return grade, output, err is the same as just return

@0xhaven
Copy link
Copy Markdown

0xhaven commented Jan 12, 2016

I think it might be best to separate this out into a couple smaller PRs. Mainly I'd pull out the heartbleed check to simplify what's being added a bit and maybe Logjam as that's going to require quite a bit more work to finish.

@lziest
Copy link
Copy Markdown
Contributor

lziest commented Aug 23, 2017

orphaned PR?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@anniephan @0xhaven @lziest @FiloSottile @j-delaney @codyli520