Hack Admin » pci compliance http://www.hackadmin.com Tue, 16 Mar 2010 21:31:57 +0000 http://wordpress.org/?v=2.8.4 en hourly 1 Test Your Site for Specific SSL Version Support http://www.hackadmin.com/2008/06/30/test-your-site-for-specific-ssl-version-support/ http://www.hackadmin.com/2008/06/30/test-your-site-for-specific-ssl-version-support/#comments Mon, 30 Jun 2008 21:08:06 +0000 admin http://www.hackadmin.com/2008/06/30/test-your-site-for-specific-ssl-version-support/ Ok, so I had a hell of a time with some PCI compliance stuff.   I was in somebody else’s config and it was a mess.  Basically what I needed was a tool to test for what versions of SSL the server was allowing.   Instead, I kept mucking with the config trying to get all the SSLv2 crap out of it… and it kept accepting SSLv2 requests.  In order to verify I had failed again, I was waiting for the PCI reports to return (2 or 3 hours).  Not very time efficient.

At any rate, here’s what I finally found:

For Windoze Whores:

http://support.microsoft.com/kb/284285

From the command line:

openssl s_client -host localhost -port 443 -ssl2

Of course you can rotate through your protocols and examine the output.

*Sigh*…

]]> http://www.hackadmin.com/2008/06/30/test-your-site-for-specific-ssl-version-support/feed/ 0