search

openbmc / bmcweb

A do everything Redfish, KVM, GUI, and DBus webserver for OpenBMC
Apache License 2.0
160 stars 131 forks source link

How do I test the security of the web #268

Closed jack206 closed 9 months ago

jack206 commented 9 months ago

Is this the right place to submit this?

Bug Description

I use burp suite to test the security of the web,but failed

Burp Suite Community Edition
Error
Received fatal alert: protocol_version

It seems that the TLVS version is not compatible。How can i resolve it ?

Version

openbmc 2.12

Additional Information

root@HyperCard3-0-25G:~# openssl s_client -connect 172.29.54.162:443 -tls1  
CONNECTED(00000003)
20CFF576:error:0A00042E:lib(20):ssl3_read_bytes:reason(1070):../openssl-3.0.7/ssl/record/rec_layer_s3.c:1600:SSL alert number 70
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 7 bytes and written 104 bytes
Verification: OK
---
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
    Protocol  : TLSv1
    Cipher    : 0000
    Session-ID: 
    Session-ID-ctx: 
    Master-Key: 
    Start Time: 1569432708
    Timeout   : 7200 (sec)
    Verify return code: 0 (ok)
    Extended master secret: no
---
root@HyperCard3-0-25G:~# openssl s_client -connect 172.29.54.162:443 -tls11

s_client: Unknown option: -tls11
s_client: Use -help for summary.
root@HyperCard3-0-25G:~# 
root@HyperCard3-0-25G:~# openssl s_client -connect 172.29.54.162:443 -tls1_1
CONNECTED(00000003)
205FFB76:error:0A00042E:lib(20):ssl3_read_bytes:reason(1070):../openssl-3.0.7/ssl/record/rec_layer_s3.c:1600:SSL alert number 70
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 7 bytes and written 104 bytes
Verification: OK
---
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
    Protocol  : TLSv1.1
    Cipher    : 0000
    Session-ID: 
    Session-ID-ctx: 
    Master-Key: 
    Start Time: 1569432729
    Timeout   : 7200 (sec)
    Verify return code: 0 (ok)
    Extended master secret: no
---
root@HyperCard3-0-25G:~# openssl s_client -connect 172.29.54.162:443 -tls1_2
CONNECTED(00000003)
Can't use SSL_get_servername
depth=0 C = US, O = OpenBMC, CN = HyperCard3-0-25G
verify error:num=18:self-signed certificate
verify return:1
depth=0 C = US, O = OpenBMC, CN = HyperCard3-0-25G
verify return:1
---
Certificate chain
 0 s:C = US, O = OpenBMC, CN = HyperCard3-0-25G
   i:C = US, O = OpenBMC, CN = HyperCard3-0-25G
   a:PKEY: id-ecPublicKey, 384 (bit); sigalg: ecdsa-with-SHA256
   v:NotBefore: Sep  9 02:03:57 2019 GMT; NotAfter: Sep  6 02:03:57 2029 GMT
---
Server certificate
-----BEGIN CERTIFICATE-----
MIICUTCCAdagAwIBAgIENVilyTAKBggqhkjOPQQDAjA6MQswCQYDVQQGEwJVUzEQ
MA4GA1UECgwHT3BlbkJNQzEZMBcGA1UEAwwQSHlwZXJDYXJkMy0wLTI1RzAeFw0x
OTA5MDkwMjAzNTdaFw0yOTA5MDYwMjAzNTdaMDoxCzAJBgNVBAYTAlVTMRAwDgYD
VQQKDAdPcGVuQk1DMRkwFwYDVQQDDBBIeXBlckNhcmQzLTAtMjVHMHYwEAYHKoZI
zj0CAQYFK4EEACIDYgAEn5WymArUd24NYi+rDIA8AnZSe2bATuWzBOepvWTs+qPp
WwF4v1+Zg3FrH7B9+u0UmBgGcdeVgffpYpgj5tbjWoGUoswisswBOyfkOA8Bf1dW
Wxq2LadGdWXIXe4jR7pMo4GsMIGpMA8GA1UdEwEB/wQFMAMBAf8wGwYDVR0RBBQw
EoIQSHlwZXJDYXJkMy0wLTI1RzAdBgNVHQ4EFgQU8JXvjgsoMebis4sTNBGVYdSk
SjowCQYDVR0jBAIwADALBgNVHQ8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEw
LQYJYIZIAYb4QgENBCAWHkdlbmVyYXRlZCBmcm9tIE9wZW5CTUMgc2VydmljZTAK
BggqhkjOPQQDAgNpADBmAjEAkx/9Ah/Rw3lD1y39asUv8lu9uQvtQ0ArQf/sKmPd
P+AHBbCBjvDNJHVX2em6t3ymAjEA+GkSFpk5Rm516DD6kdDDRr9dwesqQdT5wQBQ
HS3MuxFX0u33d/wNx++MtiZp4mOd
-----END CERTIFICATE-----
subject=C = US, O = OpenBMC, CN = HyperCard3-0-25G
issuer=C = US, O = OpenBMC, CN = HyperCard3-0-25G
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: ECDSA
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 1070 bytes and written 281 bytes
Verification error: self-signed certificate
---
New, TLSv1.2, Cipher is ECDHE-ECDSA-AES256-GCM-SHA384
Server public key is 384 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
    Protocol  : TLSv1.2
    Cipher    : ECDHE-ECDSA-AES256-GCM-SHA384
    Session-ID: CF683BB9F32FE7458E040FBB5994C0816D8FABFE08D6EFC69E2917F0A4CA9EA0
    Session-ID-ctx: 
    Master-Key: FD06C4314F98CF8A7583171C4D02590833F5962B1FDF572F9159EC861A88514E030A0D6902F55103F1FC79A23A1B9F86
    TLS session ticket lifetime hint: 7200 (seconds)
    TLS session ticket:
    0000 - a7 13 eb f6 60 d7 bf de-32 62 9c 3d 29 06 c7 c9   ....`...2b.=)...
    0010 - 89 ab 2d 63 2e 65 34 04-16 80 23 38 02 c3 c2 60   ..-c.e4...#8...`
    0020 - 6e 24 e2 5d 13 26 10 34-c6 a1 f0 f9 67 f1 ea a7   n$.].&.4....g...
    0030 - e1 e7 32 d7 57 74 6f d5-28 cf 76 55 43 dd ba 50   ..2.Wto.(.vUC..P
    0040 - b1 75 b5 d3 a5 f8 5a 72-de b1 38 cf 26 f5 0b d0   .u....Zr..8.&...
    0050 - 01 e7 6d 16 f8 9d bc ad-8a 00 d4 81 de 35 e4 93   ..m..........5..
    0060 - d8 d6 f4 67 de 9b e6 cb-31 17 5e 78 5a 70 ab 2d   ...g....1.^xZp.-
    0070 - 46 9b 33 47 1e b2 2d 4b-bd 22 68 21 0a 03 d4 e6   F.3G..-K."h!....
    0080 - 8c aa 35 7e ad ba 3f 68-76 4e 41 80 0c 61 4b 11   ..5~..?hvNA..aK.
    0090 - 1e 3a 67 6a 60 a0 f1 0b-ad c1 d7 3e ce 21 19 36   .:gj`......>.!.6

    Start Time: 1569432732
    Timeout   : 7200 (sec)
    Verify return code: 18 (self-signed certificate)
    Extended master secret: yes
---
20FFF176:error:0A000126:lib(20):ssl3_read_n:reason(294):../openssl-3.0.7/ssl/record/rec_layer_s3.c:320:
root@HyperCard3-0-25G:~# timed out waiting for input: auto-logout
edtanous commented 9 months ago

“ This is not a question about how to use OpenBMC”

You checked this box, then in the bug title ask a question about how to use OpenBMC. Please direct questions to discord or the mailing list as the template you filled out suggests.

jack206 commented 9 months ago

“ This is not a question about how to use OpenBMC”

You checked this box, then in the bug title ask a question about how to use OpenBMC. Please direct questions to discord or the mailing list as the template you filled out suggests.

I think it is a question, I can connect to other urls, but the openbmc web is not.