AnsweredAssumed Answered

Poodle Vulnerablity Test

Question asked by Rupesh Kumar on Nov 4, 2014
Latest reply on Nov 4, 2014 by Rupesh Kumar

I have a client server application written in C for Linux.

Here the authentication is done using SSL.

 

I have to test whether my server is vulnerable or not.

But I am not getting as to how my client will specify the ssl versions while connecting to server.

 

There is some openssl commands where we can specify sll v2 or v3.

openssl s_client -connect IP:PORT -ssl3

openssl s_client -connect IP:PORT -ssl2

 

To which server will these command connect to?

Is it possible that openssl_s client will connect to my server daemon using ssl?

Outcomes