On 12/11/06, Marek Marcola <[EMAIL PROTECTED]> wrote:
Can you send ssldump with -aAdN options ?
Certainly. (Certificate details have been obfuscated) New TCP connection #8: localhost.localdomain(48429) <-> localhost.localdomain(5758) 8 1 0.0028 (0.0028) C>S SSLv2 compatible client hello Version 3.1 cipher suites Unknown value 0x39 Unknown value 0x38 Unknown value 0x35 TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA TLS_RSA_WITH_3DES_EDE_CBC_SHA SSL2_CK_3DES Unknown value 0x33 Unknown value 0x32 Unknown value 0x2f TLS_RSA_WITH_IDEA_CBC_SHA SSL2_CK_IDEA SSL2_CK_RC2 TLS_RSA_WITH_RC4_128_SHA TLS_RSA_WITH_RC4_128_MD5 SSL2_CK_RC4 TLS_DHE_RSA_WITH_DES_CBC_SHA TLS_DHE_DSS_WITH_DES_CBC_SHA TLS_RSA_WITH_DES_CBC_SHA SSL2_CK_DES TLS_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA TLS_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA TLS_RSA_EXPORT_WITH_DES40_CBC_SHA TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5 SSL2_CK_RC2_EXPORT40 TLS_RSA_EXPORT_WITH_RC4_40_MD5 SSL2_CK_RC4_EXPORT40 8 2 0.0053 (0.0025) S>CV3.1(74) Handshake ServerHello Version 3.1 random[32]= 45 7d a0 8b 4b e8 ae 91 c7 13 a2 53 cd 21 70 02 e6 61 f7 ef 52 12 14 c5 ab 0f 1c b7 59 b3 46 28 session_id[32]= c8 c6 12 12 89 c2 01 42 63 24 db e6 83 5f 98 ac 23 f6 80 92 ec d0 5d d4 23 6a 47 e7 dc b9 21 4b cipherSuite Unknown value 0x35 compressionMethod NULL 8 3 0.0053 (0.0000) S>CV3.1(889) Handshake Certificate Subject C=US ST=Illinois L=Chicago O=Blah CN=BLAH-SRV-BLAH [EMAIL PROTECTED] Issuer C=US ST=Illinois L=Chicago O=Blah CN=BLAH-SRV-BLAH [EMAIL PROTECTED] Serial 00 Extensions Extension: X509v3 Subject Key Identifier Extension: X509v3 Authority Key Identifier Extension: X509v3 Basic Constraints 8 4 0.0053 (0.0000) S>CV3.1(4) Handshake ServerHelloDone 8 5 0.0217 (0.0163) C>SV3.1(134) Handshake ClientKeyExchange 8 6 0.0611 (0.0393) C>SV3.1(1) ChangeCipherSpec 8 7 0.0611 (0.0000) C>SV3.1(48) Handshake 8 8 0.0615 (0.0004) S>CV3.1(1) ChangeCipherSpec 8 9 0.0615 (0.0000) S>CV3.1(48) Handshake ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]