Can't remember who I was talking to about OpenVAS's SSL support and the limitations imposed by the use of GNU TLS, but porting the following to OpenVAS would make a fun little project:
http://code.google.com/p/ssl-enum/ Essentially, different SSL libraries (Windows, GNU TLS, OpenSSL) support different cipher suites and thus you can't really rely on one library to check what a server supports. If anyone is interested in working on this, give me a shout and maybe we can get something going. Tim -- Tim Brown <mailto:[email protected]> <http://www.openvas.org/> _______________________________________________ Openvas-plugins mailing list [email protected] http://lists.wald.intevation.org/mailman/listinfo/openvas-plugins
