0005289: Nikto fails subsequent SSL handshakes, after redirects

ID	Project	Category	View Status	Date Submitted	Last Update

0005289	Kali Linux	Kali Package Bug	public	2019-03-04 10:06	2019-09-04 12:37

Reporter	js	Assigned To
Priority	normal	Severity	major	Reproducibility	always
Status	closed	Resolution	open
Product Version	2019.1

Summary	0005289: Nikto fails subsequent SSL handshakes, after redirects
Description	Nikto errors out while exploring SSL sites. Initial handshake seems OK, and proper reports about site certificate properties, headers and so on are reported. However, once the SSL site sends redirects, the subsequent SSL negotiations fail. I haven't seen a single SSL site for which nikto didn't error out: ERROR: Error limit (20) reached for host, giving up. Last error: opening stream: can't connect: SSL negotiation failed: error:14094410:SSL routines:ssl3_read_bytes:sslv3 alert handshake failure at /var/lib/nikto/plugins/LW2.pm line 5157.
Steps To Reproduce	Run nikto on an ssl site that redirects '/' to something, i.e. to '/login'.

g0tmi1k 2019-09-04 12:37 administrator ~0011022	Due to the age of the OS (Kali Moto [v1], Kali Safi [v2], Kali Rolling <= 2018.4), these legacy versions are no longer supported. We will be closing this ticket due to inactivity. Please could you see if you are able to replicate this issue with the latest version of Kali Linux - https://www.kali.org/downloads/)? If you are still facing the same problem, feel free to re-open the ticket. If you choose to do this, could you provide more information to the issue you are facing, and also give information about your setup? For more information, please read: https://kali.training/topic/filing-a-good-bug-report/

Date Modified	Username	Field	Change
2019-03-04 10:06	js	New Issue
2019-09-04 12:37	g0tmi1k	Note Added: 0011022
2019-09-04 12:37	g0tmi1k	Status	new => closed