On Sat, Apr 14, 2012 at 7:20 PM, Nathan Smyth <naf...@ymail.com> wrote: > Hi there, > > I have a dumb question. How can I tell whether SSL is actually protecting a > tcp connection - is there anyway from outside the application. I assume I > should look for something in Netstat? > > I have quite a complicated application, with lots of sockets open between > various components. Some (on the same machine) shouldn't be SSL protected, > others should be. > I think I've got it implemented OK, but I'd like to make sure --- you know, > so it's not just a failed SSL handshake which drops back to unprotected > reads/writes. > > Any tips most welcome (I'm on Mac OSX) For manual inspection, I typically use Wireshark.
tcpdump or some of the command line tools with Wireshark should allow some sort of automation. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org