[Net-ssleay-devel] Re: Net::SSLeay question
Florian Ragwitz
rafl at debian.org
Thu Sep 14 21:45:43 UTC 2006
On Thu, Sep 14, 2006 at 07:56:22PM +0000, sampo at symlabs.com wrote:
> Mark Terry writes:
> >Sorry for troubling you, I have a question regarding Net::SSLeay:
> >
> >with "openssl s_client -connect 123.123.123.123.:443 < /dev/null" you
> >receive the following response:
> >
> >New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA
> >Server public key is 2048 bit
> >SSL-Session:
> > Protocol : TLSv1
> > Cipher : DHE-RSA-AES256-SHA
> > Session-ID:
> >B81B40B607A06B832BE2F0D3521C00DAD33B7DFAB9B3935C78A7E6EAEA6358F1
> > Session-ID-ctx:
> > Master-Key:
> >8ABDCAC29FBCA7FD4270F44D4814DD4B2B9B977C0C492F454ECC21DC9D2F4F13104F414E1F
> >EDBED819B5B01EECB393A7
> > Key-Arg : None
> > Start Time: 1158153666
> > Timeout : 300 (sec)
> > Verify return code: 19 (self signed certificate in certificate chain)
> >---
> >
> >How do I go about getting the "Protocol : TLSv1" value with Net::SSLeay?
> >
> >I was thinking that it would be the following openssl fucntion:
> >
> > char *SSL_CIPHER_get_version(SSL_CIPHER *cipher);
> >
> > Returns a string like ``TLSv1/SSLv3'' or ``SSLv2'' which
> > indicates the SSL/TLS protocol version to which cipher belongs
> >(i.e. where it was defined in the specification the first time).
I think it's Net::SSLeay::get_cipher($ssl), which you're after.
-Flo
--
BOFH excuse #17:
fat electrons in the lines
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/net-ssleay-devel/attachments/20060914/80095f39/attachment.pgp
More information about the Net-ssleay-devel
mailing list