Hi All, I just tried to test my web server with telnet. The only problem was that my web server refuses non-encrypted connections (duh!). I know that SSL and SSH are *entirely* different, but ssh is the only commonly-available encryption-enabled command-line tool around. It would be greate to have an SSL-emulation mode in OpenSSH.... Just wishful thinking, Ciaran -- +-----------------------------------------------------------------------+ Ciaran Deignan Tel: (France) 04 38 49 87 27 NetCelo, Managed Internet VPN http://www.netcelo.com/ mailto: Ciaran.Deignan at netcelo.com +-----------------------------------------------------------------------+
On Wed, 31 Oct 2001 10:30:06 EST, Ciaran Deignan writes:> > I know that SSL and SSH are *entirely* different, but ssh is > the only commonly-available encryption-enabled command-line tool > around. It would be greate to have an SSL-emulation mode in > OpenSSH....Since OpenSSH depends on the OpenSSL package, presumably you have the latter installed? Try: openssl s_client -connect host:443 to connect to your SSL-enabled web server. -- Dan Astoorian People shouldn't think that it's better to have Sysadmin, CSLab loved and lost than never loved at all. It's djast at cs.toronto.edu not, it's better to have loved and won. All www.cs.toronto.edu/~djast/ the other options really suck. --Dan Redican
On Wed, 31 Oct 2001, Ciaran Deignan wrote:> > > Hi All, > > I just tried to test my web server with telnet. The only problem > was that my web server refuses non-encrypted connections (duh!). > > I know that SSL and SSH are *entirely* different, but ssh is > the only commonly-available encryption-enabled command-line tool > around. It would be greate to have an SSL-emulation mode in > OpenSSH....If you have openssl (which you do have if you have openssh) then you should have the openssl command. Try: $ openssl s_client -connect www.server.somewhere:https and after that RTFM. And then there is stunnel, which does SSL tunneling. Both can be used from command line and do their job well. It might be good if openssh could use X.509 sertificates, but other than that I see no point in introducing SSL to openssh. - Jani
On Wed, Oct 31, 2001 at 04:30:06PM +0100, Ciaran Deignan wrote:> I just tried to test my web server with telnet. The only problem > was that my web server refuses non-encrypted connections (duh!).Read the man pages for OpenSSL, especially the s_client feature. I believe it does exactly what you want. If not, follow up to an OpenSSL mailing list/forum. :-) -Peter
On Wed, 31 Oct 2001, Ciaran Deignan wrote:> > > Hi All, > > I just tried to test my web server with telnet. The only problem > was that my web server refuses non-encrypted connections (duh!). > > I know that SSL and SSH are *entirely* different, but ssh is > the only commonly-available encryption-enabled command-line tool > around. It would be greate to have an SSL-emulation mode in > OpenSSH....No - they are _completely_ different. If you have OpenSSL installed (which you probably have if you have OpenSSH installed), you can use "openssl s_client" to do what you ask. -d -- | By convention there is color, \\ Damien Miller <djm at mindrot.org> | By convention sweetness, By convention bitterness, \\ www.mindrot.org | But in reality there are atoms and space - Democritus (c. 400 BCE)