OpenSSL

Verify that SSLv2 is disabled

Since SSL2 is considered to be insecure, here is how to check if it's really disabled.

openssl s_client -connect HOSTNAME:PORT -ssl2

If you receive a certificate and lots of other lines, you have SSLv2 enabled. Otherwise, if you receive something like this you're fine:

7946:error:1407F0E5:SSL routines:SSL2_WRITE:ssl handshake failure:s2_pkt.c:428:
 
harry/openssl.txt · Last modified: 2009/03/19 07:57 (external edit)
Locations of visitors to this page

 
Recent changes RSS feed Creative Commons License Donate Powered by PHP Valid XHTML 1.0 Valid CSS Driven by DokuWiki