LinuxQuestions.org
LinuxAnswers - the LQ Linux tutorial section.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices

Reply
 
Search this Thread
Old 12-09-2011, 06:07 AM   #1
Doknik
LQ Newbie
 
Registered: Jun 2010
Posts: 26

Rep: Reputation: 1
How do i find SSL enabled ports or SSL instances


Hi,
I am trying to do an audit of SSL enabled ports/services running on our Linux RHEL 5.3 servers .
I am trying to find which ports on our servers are ssl enabled .I am not sure how to find this .I need to know how to check which ports are using ssl enabled services.

I have run commands below

lsof -i -n -P
netstat -ntulp
netstat -nap

but from the outputs of these i am not sure how to determine which ports are running ssl.I am not sure what to look for

Any help please , I am aware of SSLscan utility but when i run it it doesnt return any values and spits out an error ...could not open a connection to host 127.0.0.1 on port 443

SSLscan It seems to work in our windows environment without any erors but not Linux .I am also aware of nmap but cannot use it in our environment for security reasons

Help please
 
Old 12-10-2011, 03:29 AM   #2
lithos
Senior Member
 
Registered: Jan 2010
Location: SI : 45.9531, 15.4894
Distribution: CentOS, OpenNA/Trustix, testing desktop openSuse 12.1 /Cinnamon/KDE4.8
Posts: 1,144

Rep: Reputation: 217Reputation: 217Reputation: 217
Paste your outputs of
Code:
lsof -i -n -P
netstat -ntulp
netstat -nap
I'm sure someone will explain you everything.

Code:
root@~#>netstat -tapln
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address               Foreign Address             State       PID/Program name   
tcp        0      0 0.0.0.0:3306                0.0.0.0:*                   LISTEN      5676/mysqld         
tcp        0      0 0.0.0.0:139                 0.0.0.0:*                   LISTEN      2253/smbd           
tcp        0      0 0.0.0.0:844                 0.0.0.0:*                   LISTEN      1934/rpc.statd      
tcp        0      0 0.0.0.0:111                 0.0.0.0:*                   LISTEN      1902/portmap        
tcp        0      0 192.168.0.7:53              0.0.0.0:*                   LISTEN      26994/named         
tcp        0      0 127.0.0.1:53                0.0.0.0:*                   LISTEN      26994/named         
tcp        0      0 0.0.0.0:21                  0.0.0.0:*                   LISTEN      2062/vsftpd         
tcp        0      0 0.0.0.0:25                  0.0.0.0:*                   LISTEN      30967/master        
tcp        0      0 127.0.0.1:953               0.0.0.0:*                   LISTEN      26994/named         
tcp        0      0 0.0.0.0:445                 0.0.0.0:*                   LISTEN      2253/smbd           
tcp        0      0 192.168.0.7:139             192.168.0.18:4111           ESTABLISHED 26697/smbd          
tcp        0      0 :::33                       :::*                        LISTEN      2046/sshd           
tcp        0      0 :::80                       :::*                        LISTEN      2948/httpd          
tcp        0      0 :::25                       :::*                        LISTEN      30967/master        
tcp        0      0 :::443                      :::*                        LISTEN      2948/httpd
see as ROOT you get the last column name of the service running.... so look at port 443 (SSL http connection) :-)

Last edited by lithos; 12-10-2011 at 03:33 AM.
 
  


Reply

Tags
openssl, ssl


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Tomcat + mysql ssl enabled database connection how to ? lenin.km Linux - Server 0 11-17-2011 10:43 AM
vsFTPd - SSL connection and dynamic SSL ports toxoplasme Linux - Server 11 08-22-2008 10:50 PM
Redirect to SSL-enabled website. haxpor Linux - Networking 1 03-20-2007 02:35 AM
SSL enabled without downloading certificate ziox Linux - Networking 1 06-27-2006 05:52 AM
When trying to compile squid with ssl enabled I get the following error. sanfran49 Linux - Software 0 03-04-2004 04:33 PM


All times are GMT -5. The time now is 08:17 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration