Re: Openssl ciphers is not means SSL supported?
- Date: Wed, 22 Aug 2018 16:00:28 +0900
- From: Miwa Susumu <miwarin@xxxxxxxxx>
- Subject: Re: Openssl ciphers is not means SSL supported?
2018-08-22 14:43 GMT+09:00 Reco <recoverym4n@xxxxxxxxx>:
>> [question 1]
>> 'openssl ciphers -v' output ciphers. include SSL protocol version.
>> I have 'SSLv3' by 'openssl ciphers -v'
>> but debian openssl package disable ssl3. by configure option.
>> (see configure option in debian/rules file).
>> my openssl doesn't support SSLv3. is it right?
> Debian's openssl does support ciphers that were associated with SSLv3,
> but all these ciphers can be used for TLS too.
> The support of SSLv3 protocol itself is disabled.
oh! I see.
>> [question 2]
>> What can I know which SSL version is supported by openssl?
> "openssl list -disabled" should show all disabled features, here they
> include SSL3. The support for SSL2 was lost by openssl a long time ago.
woops. openssl 1.0.2 doesn't have 'list' command (1.1.0 has 'list').
Instead, I can 'openssl ciphers' command.
$ openssl ciphers -ssl3
Error in cipher list
$ openssl ciphers -tls1
> So, which version of SSL does Debian's openssl support? No version at
> Which version of TLS does Debian's openssl support? 1.0, 1.1 and 1.2.