Checking SSL/TLS connectivity via openssl to verify Poodle Fix

You can use below commands to check on which protocols a particular website responds:

Recommended practice is to use only TLS1_1 & TLS1_2 as the enabled protocols on your web/app server.

As SSL3 & TLS1 are not that secure now due to various uncovered vulnerabilities.


openssl s_client -connect : -<ssl3|ssl2|tls1|tls1_1|tls1_2>
openssl s_client -connect localhost:8080 -ssl2
openssl s_client -connect localhost:8080 -ssl3
openssl s_client -connect localhost:8080-tls1
openssl s_client -connect localhost:8080 -tls1_1
openssl s_client -connect localhost:8080 -tls1_2

0 comments