Wiki

User Tools

Site Tools

Trace:
ubuntu:ssl:connect_to_an_ssl-enabled_service

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision		Previous revision
ubuntu:ssl:connect_to_an_ssl-enabled_service [2021/02/02 11:50] – created peterubuntu:ssl:connect_to_an_ssl-enabled_service [2021/02/02 12:01] (current) – [Print each high-level stage of a SSL-enabled service] peter
Line 2: Line 2:
  
 <code bash> <code bash>
-openssl s_client -connect mail.prefetch.net:443 -state -nbio 2>&1 | grep "^SSL"+openssl s_client -connect mail.sharewiz.net:995 
 +</code> 
 + 
 +returns: 
 + 
 +<code bash> 
 +CONNECTED(00000003) 
 +[ ..... ] 
 + 
 +user ME 
 ++OK Name is a valid mailbox 
 + 
 +pass SOMETHING_OR_ANOTHER 
 ++OK Mailbox locked and ready 
 + 
 +list 
 ++OK scan listing follows 
 +1 1225 
 +2 1863 
 +3 1668 
 +4 963 
 +5 1969 
 +6 1437 
 +7 2357 
 +8 3316 
 +9 3517 
 +10 8952 
 +11 9616 
 + 
 +quit 
 ++OK 
 +</code> 
 + 
 +<WRAP info> 
 +**NOTE:**  The SSL and TLS connection setup process consists of four stages: 
 + 
 +  - The client and server negotiate security capabilities, such as the public-key algorithm, the symmetric key algorithm, and compression algorithms. 
 +  - The server transmits digital certificates and key information to the client, allowing the client to validate the identity of the server. 
 +  - The client exchanges key information with the server, and optionally authenticate itself with a digital certificate. 
 +  - The client and server use the negotiated parameters. 
 + 
 +</WRAP> 
 + 
 +---- 
 + 
 +===== Print each high-level stage of a SSL-enabled service ===== 
 + 
 +<code bash> 
 +openssl s_client -connect mail.sharewiz.net:443 -state -nbio 2>&1 | grep "^SSL"
 </code> </code>
  
Line 8: Line 56:
  
 <code> <code>
-SSL_connect:before/connect initialization +SSL_connect:before SSL initialization 
-SSL_connect:SSLv2/v3 write client hello A +SSL_connect:SSLv3/TLS write client hello 
-SSL_connect:error in SSLv2/v3 read server hello A +SSL_connect:error in SSLv3/TLS write client hello 
-SSL_connect:SSLv3 read server hello A +SSL_connect:SSLv3/TLS write client hello 
-SSL_connect:SSLv3 read server certificate A +SSL_connect:SSLv3/TLS read server hello 
-SSL_connect:SSLv3 read server key exchange A +SSL_connect:SSLv3/TLS read server certificate 
-SSL_connect:SSLv3 read server done A +SSL_connect:SSLv3/TLS read server key exchange 
-SSL_connect:SSLv3 write client key exchange A +SSL_connect:SSLv3/TLS read server done 
-SSL_connect:SSLv3 write change cipher spec A +SSL_connect:SSLv3/TLS write client key exchange 
-SSL_connect:SSLv3 write finished A +SSL_connect:SSLv3/TLS write change cipher spec 
-SSL_connect:SSLv3 flush data +SSL_connect:SSLv3/TLS write finished 
-SSL_connect:error in SSLv3 read finished A +SSL_connect:error in SSLv3/TLS write finished 
-SSL_connect:error in SSLv3 read finished A +SSL_connect:SSLv3/TLS write finished 
-SSL_connect:SSLv3 read finished A +SSL_connect:SSLv3/TLS read server session ticket 
-SSL handshake has read 1584 bytes and written 346 bytes+SSL_connect:SSLv3/TLS read change cipher spec 
 +SSL_connect:SSLv3/TLS read finished 
 +SSL handshake has read 3101 bytes and written 402 bytes
 SSL-Session: SSL-Session:
 </code> </code>
 +
 +----
 +
 +
  
ubuntu/ssl/connect_to_an_ssl-enabled_service.1612266636.txt.gz · Last modified: 2021/02/02 11:50 by peter
Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki