Differences between revisions 4 and 5
Revision 4 as of 2017-04-13 13:27:25
Size: 912
Editor: Kurgan
Comment:
Revision 5 as of 2017-07-17 14:09:26
Size: 1020
Editor: Kurgan
Comment:
Deletions are marked like this. Additions are marked like this.
Line 44: Line 44:

=== Leggere i dati di un certificato ===

{{{
openssl x509 -in file_certificato.crt -text -noout
}}}

OpenSSL

Verifica se SSL (e/o TLS) funziona:

  • smtp + TLS (porta 25)
    • openssl s_client  -CApath /etc/ssl/certs -connect mail.qualcosa.it:25 -starttls smtp
  • imap + TLS (porta 143)
    • openssl s_client  -CApath /etc/ssl/certs -connect mail.qualcosa.it:143 -starttls imap
  • pop3 + TLS (porta 110)
    • openssl s_client  -CApath /etc/ssl/certs -connect mail.qualcosa.it:110 -starttls pop3
  • smtps (porta 465)
    • openssl s_client -CApath /etc/ssl/certs -connect mail.qualcosa.it:smtps
  • imaps (porta 993)
    • openssl s_client -CApath /etc/ssl/certs -connect mail.qualcosa.it:imaps
  • pop3s (porta 995)
    • openssl s_client -CApath /etc/ssl/certs -connect mail.qualcosa.it:pop3s

Cambiare la password a una chiave privata

openssl rsa -des3 -in keyfile.key -out keyfile-with-new-password.key

Leggere i dati di un certificato

openssl x509 -in file_certificato.crt -text -noout

OpenSSL (last edited 2018-11-07 13:11:17 by Kurgan)