[gnutls-devel] query server with ECDSA server cert
m
m at mqas.net
Wed Aug 6 11:06:53 CEST 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
i don't seem to get all expected results when querying my server
$ gnutls-cli-debug -p 443 mqas.net
Resolving 'mqas.net'...
Connecting to '58.96.67.63:443'...
Checking for SSL 3.0 support... no
Checking whether %COMPAT is required... no
Checking for TLS 1.0 support... no
Checking for TLS 1.1 support... no
Checking fallback from TLS 1.1 to... failed
Checking for TLS 1.2 support... no
Checking whether we need to disable TLS 1.2... yes
Checking whether we need to disable TLS 1.1... yes
Checking whether we need to disable TLS 1.0... N/A
Checking for Safe renegotiation support... no
Checking for Safe renegotiation support (SCSV)... no
Checking for HTTPS server name... not checked
Checking for version rollback bug in RSA PMS... yes
Checking for version rollback bug in Client Hello... yes
Checking whether the server ignores the RSA PMS version... no
Checking whether the server can accept Hello Extensions... no
Checking whether the server can accept HeartBeat Extension... no
Checking whether the server can accept small records (512 bytes)... no
Checking whether the server can accept cipher suites not in SSL 3.0
spec... yes
Checking whether the server can accept a bogus TLS record version in the
client hello... no
Checking for certificate information... N/A
Checking for trusted CAs... N/A
Checking whether the server understands TLS closure alerts... no
Checking whether the server supports session resumption... no
Checking for anonymous authentication support... no
Checking anonymous Diffie-Hellman group info... N/A
Checking for ephemeral Diffie-Hellman support... no
Checking ephemeral Diffie-Hellman group info... N/A
Checking for ephemeral EC Diffie-Hellman support... no
Checking ephemeral EC Diffie-Hellman group info... N/A
Checking for AES-GCM cipher support... yes
Checking for AES-CBC cipher support... yes
Checking for CAMELLIA-GCM cipher support... no
Checking for CAMELLIA-CBC cipher support... no
Checking for 3DES-CBC cipher support... no
Checking for ARCFOUR 128 cipher support... no
Checking for MD5 MAC support... no
Checking for SHA1 MAC support... yes
Checking for SHA256 MAC support... yes
Checking for ZLIB compression support... no
Checking for max record size... no
Checking for OpenPGP authentication support... no
?
-----BEGIN PGP SIGNATURE-----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=HvKb
-----END PGP SIGNATURE-----
More information about the Gnutls-devel
mailing list