17 Nisan 2012 Salı

OpenSSL Kullanim Ornekleri

OpenSSL kendi icerisinde s_client isminde bir test modulu barindirmaktadir. Bu modul sayesinde SSL/TLS kullanan sunucularin testlerini gerceklestirebilirsiniz. Asagidada ornek bir komut bulunmaktadir.



cihat@cx$ openssl s_client -connect www.isbank.com.tr:443
CONNECTED(00000003)
depth=2 /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=(c) 2006 VeriSign, Inc. - For authorized use only/CN=VeriSign Class 3 Public Primary Certification Authority - G5
verify error:num=20:unable to get local issuer certificate
verify return:0
---
Certificate chain
 0 s:/1.3.6.1.4.1.311.60.2.1.3=TR/2.5.4.15=V1.0, Clause 5.(b)/serialNumber=431112/378694/C=TR/ST=-/L=Istanbul/O=TURKIYE IS BANKASI A.S./OU=BT URUN VE HIZMET YONETIMI/OU=Terms of use at www.verisign.com/rpa (c)05/CN=www.isbank.com.tr
   i:/C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=Terms of use at https://www.verisign.com/rpa (c)06/CN=VeriSign Class 3 Extended Validation SSL SGC CA
 1 s:/C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=Terms of use at https://www.verisign.com/rpa (c)06/CN=VeriSign Class 3 Extended Validation SSL SGC CA
   i:/C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=(c) 2006 VeriSign, Inc. - For authorized use only/CN=VeriSign Class 3 Public Primary Certification Authority - G5
 2 s:/C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=(c) 2006 VeriSign, Inc. - For authorized use only/CN=VeriSign Class 3 Public Primary Certification Authority - G5
   i:/C=US/O=VeriSign, Inc./OU=Class 3 Public Primary Certification Authority
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=/1.3.6.1.4.1.311.60.2.1.3=TR/2.5.4.15=V1.0, Clause 5.(b)/serialNumber=431112/378694/C=TR/ST=-/L=Istanbul/O=TURKIYE IS BANKASI A.S./OU=BT URUN VE HIZMET YONETIMI/OU=Terms of use at www.verisign.com/rpa (c)05/CN=www.isbank.com.tr
issuer=/C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=Terms of use at https://www.verisign.com/rpa (c)06/CN=VeriSign Class 3 Extended Validation SSL SGC CA
---
No client certificate CA names sent
---
SSL handshake has read 4533 bytes and written 435 bytes
---
New, TLSv1/SSLv3, Cipher is RC4-SHA
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
SSL-Session:
    Protocol  : TLSv1
    Cipher    : RC4-SHA
    Session-ID: E010BAAF623F3148CDAF4A4AAC9D19BB79DF78F3717ED6D31737E46E933396D9
    Session-ID-ctx: 
    Master-Key: D5F630E62A53532102C8CC8D8FDEF8282144612BB46795487C750C4E91ECAE9B2F01D8FBC7B54FE7C2C2F06CE198DB18
    Key-Arg   : None
    Start Time: 1334675352
    Timeout   : 300 (sec)
    Verify return code: 20 (unable to get local issuer certificate)
---

Bir dosyanin hash degeri alinabilir.

cihat@cx$ openssl dgst -sha1 -c sokoban.sed
SHA1(sokoban.sed)= e4:ec:aa:86:63:e9:d4:07:d3:5a:24:21:ea:b1:83:48:ff:ae:59:3d


cihat@cx$ openssl dgst -ripemd160 -c sokoban.sed
RIPEMD160(sokoban.sed)= fe:5f:bc:7e:8a:b8:44:ac:12:c6:9e:fd:6b:4d:d3:df:b7:b2:76:92

cihat@cx$ openssl dgst -md5 -c  sokoban.sed
MD5(sokoban.sed)= 8d:74:bf:ab:be:ea:79:3d:9e:c8:6a:42:62:ca:7b:f1


cihat@cx$ md5sum sokoban.sed
8d74bfabbeea793d9ec86a4262ca7bf1  sokoban.sed






Hiç yorum yok:

Yorum Gönderme