[Ach] Thanks for the Logjam blog-post
Adi Kriegisch
adi at kriegisch.at
Thu May 21 14:39:26 CEST 2015
Hey!
> >> openssl s_client -connect bettercrypto.org:443 -cipher
> > "DHE-RSA-AES128-SHA"
> > Yes, that works on Ubuntu 14.04, 12.10 and Debian Wheezy
> >
> ... but only prints
>
> Server public key is XYZW bits
>
> and not
>
> Server Temp Key: DH, ABCD bits
IIRC one needs openssl v1.0.2 to get the DH param info; for other systems
using gnutls-cli might work:
| gnutls-cli bettercrypto.org
| (...)
| - Description: (TLS1.2)-(DHE-RSA-4096)-(AES-128-GCM)
| - Session ID: (...)
| - Ephemeral Diffie-Hellman parameters
| - Using prime: 4096 bits
| - Secret key: 1023 bits
| - Peer's public key: 4094 bits
| - Version: TLS1.2
| - Key Exchange: DHE-RSA
| - Server Signature: RSA-SHA256
| - Cipher: AES-128-GCM
| - MAC: AEAD
| - Compression: NULL
| - Handshake was completed
-- Adi
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 827 bytes
Desc: Digital signature
URL: <http://lists.cert.at/pipermail/ach/attachments/20150521/77c662ef/attachment.sig>
More information about the Ach
mailing list