openssl client test help please
Hi
I don't run a server and am aware there a lots of server tests as some show up by searching here. I have re-compiled openssl v 1.0.2d with configure that included Code:
./config --prefix=/usr --openssldir=/etc/ssl --libdir=lib \ ---snipped to show what I hope is relevant info Code:
openssl s_client -connect google.com:443 -ssl3 http://chrisburgess.com.au/how-to-te...vulnerability/ which claims Quote:
questions if I may? 1) Is this a reasonable client test for openssl? 2) As I attempted to connect using sslv3 why does the output show New, TLSv1/SSLv3, Cipher is ECDHE-RSA-RC4-SHA 3) Does the presence of the cipher show it truly connected using sslv3? Quote:
Thanks for reading gordon |
Perhaps this can shed some light?
I get little resemblance from your query of google.com:443 -ssl3 Code:
echo | openssl s_client -connect google.com:443 -ssl3 |
Habitual
True but yours still shows.....I snipped out the certificate stuff Quote:
https://www.rfc-editor.org/rfc/rfc7525.txt and the text link makes numerous references to ciphers to disable/recommend etc It appears to be a server rather than a client reference but 4.2. Recommended Cipher Suites looks like I can re-compile to use those ciphers and test later Quote:
|
To anyone
I found a new command to try out as per https://wiki.openssl.org/index.php/M...Ciphers%281%29 Code:
openssl ciphers -ssl3 Code:
openssl ciphers -ssl3 |
drat can not delete. sorry
|
Try
Code:
true|openssl s_client -tls1_2 -servername www.bing.com -connect www.bing.com:443 Code:
CONNECTED(00000003) |
Hi
Thanks for helping me out. Handshake and cipher seen for TLS command as expected Code:
true|openssl s_client -tls1_2 -servername www.bing.com -connect www.bing.com:443 Instead if handshake shows zero bytes and no cipher shows up for sslv3 then that is a good result for my client test. I will mark this as solved unless I have over looked something. unSpawn no need to reply now unless you feel I am wrong again ;) No matter what, thankyou very much for taking time out to help me out |
All times are GMT -5. The time now is 12:44 AM. |