In this FREE six-day email course, you'll learn from Janis Griffin, Database Performance Evangelist. She'll teach 12 steps that you can use to optimize your queries as much as possible and see measurable results in your work. Get started today!
tool like openssl for windows
Hi experts,
I am a network engineer and don't normally deal with coding or IT forensics.
What I am looking to do is see the type of response from our SSL sites when it receives an SSLV2 requests.
I've read that openssl does the trick but I don't think it installs on Windows (correct me if I am wrong). What other tools are available for this?
I am a network engineer and don't normally deal with coding or IT forensics.
What I am looking to do is see the type of response from our SSL sites when it receives an SSLV2 requests.
I've read that openssl does the trick but I don't think it installs on Windows (correct me if I am wrong). What other tools are available for this?
Asked:
5-
3
2 Solutions
Windows binaries for openssl:
http://www.openssl.org/related/binaries.html
Hope this helps.
All that has is the link I already provided.
Thank you. i was able to load openssl on my Windows 64-bit computer.
I went into DOS and typed in c:\openssl-win64\bin\opens
Now I get an OPENSSL prompt.
I will diable sslv3 and only allow sslv2 on my browser. I want to then go to www.chase.com and see how it responds.
Can someone provide a same syntax for accomplishing this? Chase IP is 159.53.60.115
I went into DOS and typed in c:\openssl-win64\bin\opens
Now I get an OPENSSL prompt.
I will diable sslv3 and only allow sslv2 on my browser. I want to then go to www.chase.com and see how it responds.
Can someone provide a same syntax for accomplishing this? Chase IP is 159.53.60.115
I don't see a syntax for S-client.
OpenSSL> s-client ?
openssl:Error: 's-client' is an invalid command.
OpenSSL> openssl s_client ?
openssl:Error: 'openssl' is an invalid command.
OpenSSL> s-client ?
openssl:Error: 's-client' is an invalid command.
OpenSSL> openssl s_client ?
openssl:Error: 'openssl' is an invalid command.
s_client is an argument to give after 'openssl' on the command line, not in interactive mode (although you may be able to, but for the sake of this thread just use the following command).
Run that and if you see the certificate, you *should* be good.
openssl s_client -connect hostname:port -ssl2
Run that and if you see the certificate, you *should* be good.
Run that and if you see the certificate, you *should* be good.
I should have clarified. If you see the certificate, then SSLv2 is enabled. Not sure what you are trying to accomplish, but disabling SSLv2 and weak ciphers are good things to do.
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
Join & Write a Comment Already a member? Login.
Featured Post
ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.
One of a set of tools we're offering as a way to say thank you for being a part of the community.
Tackle projects and never again get stuck behind a technical roadblock.
Join Now
Why not just fire up a Unix-based VM? Ubuntu is nice and friendly to those who are used to Windows, then you can just use "openssl s_client" combined with whatever special options you need for your testing. This approach realistically shouldn't take long at all these days, it's a pretty common practice.