From 51a633ac3cf08910b81f928d8b30f7aea021247e Mon Sep 17 00:00:00 2001
From: dmiller <dmiller@e0a8ed71-7df4-0310-8962-fdc924857419>
Date: Wed, 23 Jul 2014 01:52:41 +0000
Subject: [PATCH] NSE: Add TLS_RSA_WITH_3DES_EDE_CBC_SHA to default ciphers

As noted (http://seclists.org/nmap-dev/2014/q3/121), some versions of
Windows require a KB before supporting AES, so add a 3DES option.
---
 scripts/ssl-date.nse         | 1 +
 scripts/tls-nextprotoneg.nse | 1 +
 2 files changed, 2 insertions(+)

diff --git a/scripts/ssl-date.nse b/scripts/ssl-date.nse
index 32887bc53..48a70d4f4 100644
--- a/scripts/ssl-date.nse
+++ b/scripts/ssl-date.nse
@@ -58,6 +58,7 @@ local client_hello = function(host, port)
     ["protocol"] = "TLSv1.0",
     ["ciphers"] = {
       "TLS_RSA_WITH_AES_128_CBC_SHA",
+      "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
       "TLS_ECDHE_RSA_WITH_RC4_128_SHA",
       "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
       "TLS_RSA_WITH_RC4_128_MD5",
diff --git a/scripts/tls-nextprotoneg.nse b/scripts/tls-nextprotoneg.nse
index 140df05f6..197adca17 100644
--- a/scripts/tls-nextprotoneg.nse
+++ b/scripts/tls-nextprotoneg.nse
@@ -56,6 +56,7 @@ local client_hello = function(host, port)
     ["protocol"] = "TLSv1.0",
     ["ciphers"] = {
       "TLS_RSA_WITH_AES_128_CBC_SHA",
+      "TLS_RSA_WITH_3DES_EDE_CBC_SHA",
       "TLS_ECDHE_RSA_WITH_RC4_128_SHA",
       "TLS_DHE_RSA_WITH_AES_256_CBC_SHA",
       "TLS_RSA_WITH_RC4_128_MD5",