[Ach] Verifying OpenSSL ciphers
Torsten Gigler
torsten.gigler at owasp.org
Wed Jul 8 14:33:44 CEST 2015
Hi Raoul,
you could use the -v or -V Option, e.g. openssl ciphers -v "ALL".
Additionally I'd recommend to test your configuration, see:
https://bettercrypto.org/static/applied-crypto-hardening.pdf ('Tools'
Section)
https://www.owasp.org/index.php/Transport_Layer_Protection_Cheat_Sheet#Test_your_overall_TLS.2FSSL_setup_and_your_Certificate
Cheers
Torsten
PS: I am codevelopper of the SSL/TLS testing tool
https://www.owasp.org/index.php/O-Saft
2015-07-08 13:49 GMT+02:00 Raoul Bhatia <raoul at bhatia.at>:
> Hi!
>
> I came across the question on verifying an OpenSSL ciphers string.
> Is there any "openssl" functionality of doing so?
>
> i.e "openssl ciphers ALL:invalidCipher" does not issue any error
> but silently discards "invalidCipher".
>
> Thanks,
> Raoul
> --
> DI (FH) Raoul Bhatia M.Sc. | E-Mail. raoul at bhatia.at
> Software Development and | Web. http://raoul.bhatia.at/
> System Administration | Tel. +43 699 10132530
> _______________________________________________
> Ach mailing list
> Ach at lists.cert.at
> http://lists.cert.at/cgi-bin/mailman/listinfo/ach
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cert.at/pipermail/ach/attachments/20150708/1735ee85/attachment.html>
More information about the Ach
mailing list