User: Password:
|
|
Subscribe / Log in / New account

OpenSSL and IPv6

OpenSSL and IPv6

Posted Mar 15, 2012 5:49 UTC (Thu) by Comet (subscriber, #11646)
Parent article: OpenSSL and IPv6

If you want to use the OpenSSL libraries from the command-line, I recommend socat(1), which lets you plumb up readline on the local side to SSL remotely (and a lot more besides).

Even though I routinely use OpenSSL as the SSL provider for Exim (which supports either OpenSSL or GnuTLS, compile-time decision), for *testing* I routinely use GnuTLS's gnutls-cli(1). It's way better than s_client(1) or socat(1) for development testing in protocol work, simply because the --starttls mode doesn't presume to handle layer-7 negotiation for you. Instead, you just send an EOF at the point where you want protocol negotiation to start. With SMTP and IMAP both, this is so markedly better than the alternatives that there's little basis for comparison.


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds