RE: Any tool for testing SSL servers (by modifying client HELLO)?
From: Steven Lundberg (slundberg_at_fnbbemidji.com)
Date: 09/13/05
- Previous message: Kelly Martin: "SF new mailing list announcement: BS 7799 Security"
- In reply to: dallas jordan: "Re: Any tool for testing SSL servers (by modifying client HELLO)?"
- Next in thread: Thierry Zoller: "Re: Any tool for testing SSL servers (by modifying client HELLO)?"
- Reply: Thierry Zoller: "Re: Any tool for testing SSL servers (by modifying client HELLO)?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: <security-basics@securityfocus.com> Date: Tue, 13 Sep 2005 12:23:06 -0500
I use Foundstone's SSLDigger to test my SSL servers.
> -----Original Message-----
> From: dallas jordan [mailto:dallas.jordan@gmail.com]
> Sent: Monday, September 12, 2005 2:46 PM
> To: contrera@eig.unige.ch
> Cc: security-basics@securityfocus.com
> Subject: Re: Any tool for testing SSL servers (by modifying
> client HELLO)?
>
>
> I believe you can use OpenSSL from the command line in linux to
> connect to the server with different encryption strengths set and see
> if the server will accept any of them.
>
> On 12 Sep 2005 14:07:29 -0000, contrera@eig.unige.ch
> <contrera@eig.unige.ch> wrote:
> > Hi,
> >
> > I'm looking for a tool that will allow me to specify which
> cipher suites i want to put in my client HELLO.
> >
> > I want to test if my SSL servers allows ciphers with "only" 40bits.
> >
> > Thanks for the infos
> >
>
>
> --
> Dallas Jordan CCNA, CISSP
>
- Previous message: Kelly Martin: "SF new mailing list announcement: BS 7799 Security"
- In reply to: dallas jordan: "Re: Any tool for testing SSL servers (by modifying client HELLO)?"
- Next in thread: Thierry Zoller: "Re: Any tool for testing SSL servers (by modifying client HELLO)?"
- Reply: Thierry Zoller: "Re: Any tool for testing SSL servers (by modifying client HELLO)?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
