4623 shaares
397 liens privés
397 liens privés
# BIEN (handshake failure quand on tente d'utiliser EXPORT en cipher)
openssl s_client -connect fralef.me:443 -cipher EXPORT
CONNECTED(00000003)
140181783762592:error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure:s23_clnt.c:770:
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 7 bytes and written 111 bytes
---
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
---# PAS BIEN (ça se connecte quand on tente d'utiliser EXPORT en cipher)
openssl s_client -connect americanexpress.com:443 -cipher EXPORT
CONNECTED(00000003)
depth=1 C = US, O = GeoTrust Inc., CN = GeoTrust SSL CA - G4
verify error:num=20:unable to get local issuer certificate
verify return:0
---
Certificate chain
0 s:/C=US/ST=Arizona/L=Phoenix/O=American Express Travel Related Services Company Inc/OU=Consumer/CN=americanexpress.com
i:/C=US/O=GeoTrust Inc./CN=GeoTrust SSL CA - G4
1 s:/C=US/O=GeoTrust Inc./CN=GeoTrust SSL CA - G4
i:/C=US/O=GeoTrust Inc./CN=GeoTrust Global CA
---
Server certificate
-----BEGIN CERTIFICATE-----
MIIGhDCCBWygAwIBAgICBMUwDQYJKoZIhvcNAQELBQAwRDELMAkGA1UEBhMCVVMx
FjAUBgNVBAoTDUdlb1RydXN0IEluYy4xHTAbBgNVBAMTFEdlb1RydXN0IFNTTCBD
QSAtIEc0MB4XDTE1MDIyNjIyMzYzMFoXDTE2MDIyOTA2NDQ0MlowgaExCzAJBgNV
BAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRAwDgYDVQQHEwdQaG9lbml4MT0wOwYD
VQQKEzRBbWVyaWNhbiBFeHByZXNzIFRyYXZlbCBSZWxhdGVkIFNlcnZpY2VzIENv
bXBhbnkgSW5jMREwDwYDVQQLEwhDb25zdW1lcjEcMBoGA1UEAxMTYW1lcmljYW5l
eHByZXNzLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALKsqd3r
IrWoCx3D2FNk+AtyH2vCffYn+/mEzGYaVaOLQRXyekbXobiO2g4pUomXkbTJ7bZ6
/rBe2kxQh7Gj0yCXhxbkh6qSyTrOooWw7u6QgzG8mbDjTGhFb58G4RpW+nLwKEFG
whlys0skIKnjZ+QbUwY3zDvVMtG4G5tffYV5+DbZCmR5jitN5/itaLFOC0mRkfNt
9Ksw2jrC9mdwiog8A9aQWWyRFJt2OhykZE/KZriASuWYNYd0N61LPiqJ8U10ppzh
WIAD9DQRZ4QGFsL90O3Hd45euqdRUm4i/a4RQWPQl3qaOGXqugJfyQ6wl8eIF4TP
JGu3VzsRIeyyQIkCAwEAAaOCAyAwggMcMB8GA1UdIwQYMBaAFKwy7VrJ4N4wnJBY
VSZj9nKmVF/jMFcGCCsGAQUFBwEBBEswSTAfBggrBgEFBQcwAYYTaHR0cDovL2d3
LnN5bWNkLmNvbTAmBggrBgEFBQcwAoYaaHR0cDovL2d3LnN5bWNiLmNvbS9ndy5j
...
New, TLSv1/SSLv3, Cipher is EXP-DES-CBC-SHA
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
SSL-Session:
Protocol : TLSv1.2
Cipher : EXP-DES-CBC-SHA
Session-ID: 7E251B4491A26FC8F2A9F427BCE799A412E4A9CAE648DD1AA18BDEBEA70F5C5D
Session-ID-ctx:
Master-Key: 6F1F22E7E76A53CCAE59E8F7F1F1A27188C37C6A5E950395CD10E319A87C3C586B30A00DF9BB778035100F6550688B21
Key-Arg : None
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 7200 (seconds)
TLS session ticket:
0000 - 36 22 e3 26 e6 2c 76 8f-c4 5b 52 b8 f5 4c b9 f9 6".&.,v..[R..L..
0010 - 39 95 10 b5 16 84 c3 7e-09 73 83 e7 b4 1f 9e af 9......~.s......
0020 - 20 a8 19 b1 06 11 f4 23-8c f9 21 99 80 f9 e2 24 ......#..!....$
0030 - 9a 06 97 d0 1e f8 9c c6-36 e0 e3 7b 02 ae da 82 ........6..{....
0040 - e7 8e a2 05 80 b2 7f ce-ec 39 a3 d1 bd a7 37 41 .........9....7A
0050 - 3f ec 1b aa ec 95 d2 2f-6e 3e 0f 86 f1 11 90 8f ?....../n>......
0060 - 73 82 5f fd 31 a8 74 13-98 f2 dd 9a 33 b2 24 8e s._.1.t.....3.$.
0070 - 68 d0 7d 88 22 85 ba 6f-38 11 f2 fe b3 9c d5 9d h.}."..o8.......
0080 - d7 1b 7d 02 7b bb f2 25-5c 11 e3 df ed f5 f2 b7 ..}.{..%\.......
0090 - ff 92 db 1c 0f e0 40 c9-22 16 f5 e0 ce 73 55 85 ......@."....sU.
Start Time: 1425474917
Timeout : 300 (sec)
Verify return code: 20 (unable to get local issuer certificate)
---commande via https://twitter.com/xme/status/573107012717977600
