特定の名前が含まれているssl_chiperに対応しているホストを洗い出すスクリプト

#!/bin/sh
buf=""
while read f; do
  line=$f
  /bin/echo -n "Checking [${line}] ... " 
  if [ `echo "" | openssl s_client -connect ${line}:443 -cipher EXP -tls1 2> /dev/null | grep "Secure Renegotiation IS supported" | wc -l` -gt 0 ]; then
    echo "NG!"
  else
    if [ `echo "" | openssl s_client -connect ${line}:443 -cipher EXP -tls1 2> /dev/null | grep "Secure Renegotiation IS NOT supported" | wc -l` -gt 0 ]; then
      echo "OK"
    else
      echo "EXCEPTION"
    fi
  fi
done
chmod +x check.sh
vim list
----
aaa.com
bbb.jp
ccc.com
----

cat list | check.sh