How to check TLS version support for a remote SSL URL by using openssl ?

By Raaz -
How to check TLS version support for a remote SSL URL by using openssl ?

As recently many service providers are disabling the weak ciphers, TLSv1.2 becoming most trusted cipher at this moment compaing with TLSv1, TLSv1.1.

If you want to know more about these protocols, please refer
https://www.wolfssl.com/differences-between-ssl-and-tls-protocol-versions/

So if you are using services from any 3rd party/external service provider, then you want to verify the version of SSL protocol being used, then you can verify it with " openssl "

# openssl s_client -connect URL:PORT -tls1_2

URL: Is the URL for which you want to check SSL supported protocol.
Port: SSL port being used for that service.

If your service providing supporting that protocol then you will get certificate chain in the output else you will get handshake errors in the output.

Similarly you can verify support for other TLS protocols as well.

TLSv1

# openssl s_client -connect URL:PORT -tls1

TLSv1.1

# openssl s_client -connect URL:PORT -tls1_1

Hope this will help you.

Thanks
Raja

Comments

Post a Comment

Popular posts from this blog

grep: unknown device method

By Raaz -
Today while using grep command via rundeck I was through grep: unknown device method  error. And the reason is due to I am having ' - ' in my search pattern I was through this error. I mean search includes grep "-search.this" /path/to/file Then you may get error with grep. So remove ' - ' in pattern and repeat your search. grep "search.this" /path/to/file Hope that helps.
Read more

Uploading files to FTP/SFTP using CURL

By Raaz -
Hello, Today I am writing below article which can help you to upload files to SFTP/FTP by using CURL. Ok why we need that ? Let me tell explain!! How we login into SFTP/FTP ? [root@virt03 test]# sftp 192.168.56.110 Connecting to 192.168.56.110... root@192.168.56.110's password: sftp> ls anaconda-ks.cfg       nodes                 post-install          post-install.log sftp> exit and uploading files with put command. Its a lengthy way. So recently I have gone through few articles and with some R&D I have modified it as script and command-line argument support.So you can call the script with filename as argument.  So Lets do this!!! Command 1 : This is for uploading a single to SFTP/FTP by using CURL.  SFTP curl -k  -u virt03:virt03 -T file4  sftp://192.168.56.110/home/virt03/ Syntax :  curl -k  -u username:password -T filename sftp://IP_Addreess OR Hostname:/path/to/upload  FTP curl -k  -u virt03:virt03 -T f
Read more

How to find outgoing IP in Linux ?

By -
Here is a small snippet to find outgoing IP of your Linux box. 1. To find the outgoing internal IP only         # ip route get 8.8.8.8 | head -1 | gawk '{ print $7 }' 2. To find the outgoing internal IP along with interface.   # ip route get 8.8.8.8 | head -1 | gawk '{ print $5,$7 }' 3. In-case if your system is connected to Internet, to find the outgoing external IP   # curl ifconfig.me Note:   In case if your system having public IP assigned then there is no difference between outgoing internal IP and external IP (both are same).
Read more