API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jul 18th, 2019
83
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 5.70 KB | None | 0 0
raw download clone embed print report
  1. openssl s_client -connect odps03:636 -showcerts -state -CAfile /etc/ssl/certs/cacert.pem
  2. CONNECTED(00000005)
  3. SSL_connect:before SSL initialization
  4. SSL_connect:SSLv3/TLS write client hello
  5. SSL_connect:SSLv3/TLS write client hello
  6. SSL_connect:SSLv3/TLS read server hello
  7. depth=1 CN = Example Comapny
  8. verify return:1
  9. depth=0 CN = odps03, O = Example Comapny
  10. verify return:1
  11. SSL_connect:SSLv3/TLS read server certificate
  12. SSL_connect:SSLv3/TLS read server key exchange
  13. SSL_connect:SSLv3/TLS read server done
  14. SSL_connect:SSLv3/TLS write client key exchange
  15. SSL_connect:SSLv3/TLS write change cipher spec
  16. SSL_connect:SSLv3/TLS write finished
  17. SSL_connect:SSLv3/TLS write finished
  18. SSL_connect:SSLv3/TLS read change cipher spec
  19. SSL_connect:SSLv3/TLS read finished
  20. ---
  21. Certificate chain
  22. 0 s:CN = odps03, O = Example Comapny
  23. i:CN = Example Comapny
  24. -----BEGIN CERTIFICATE-----
  25. MIIDZDCCAcygAwIBAgIMXSR3ljZZEpjKqMTvMA0GCSqGSIb3DQEBCwUAMC8xLTAr
  26. BgNVBAMTJFBHTmlHIE9EIE9icm90IERldGFsaWN6bnkgU3AuIHogby5vLjAeFw0x
  27. OTA3MDkxMTE2MzhaFw0yMDA3MDgxMTE2MzhaMD0xDzANBgNVBAMTBm9kcHMwMzEq
  28. MCgGA1UEChMhUEdOaUcgT2Jyb3QgRGV0YWxpY3pueSBTcC4geiBvLm8uMIGfMA0G
  29. CSqGSIb3DQEBAQUAA4GNADCBiQKBgQC/WXWNYXoTjwU5ZkNo9wjWf0OqdlkB0fat
  30. mlX3dx167mDPRI0yF5wIjh7uj1L6DTcjVTL8+p7EYS0Bf98AumTZVVBj7k9U2QZO
  31. zeFThoc+SmabLqd92o3nrzBOwyEigBV18MZGr3IfmUgbRy6VseqU67a9BBhcl0+3
  32. uGmXm1P0sQIDAQABo3YwdDAMBgNVHRMBAf8EAjAAMBMGA1UdJQQMMAoGCCsGAQUF
  33. BwMBMA8GA1UdDwEB/wQFAwMHoAAwHQYDVR0OBBYEFC2dY36t5OaMfplyaljU8asy
  34. qxupMB8GA1UdIwQYMBaAFHKlhTlGegvaf5tc7ierwq2cQDXlMA0GCSqGSIb3DQEB
  35. CwUAA4IBgQAMdXt0aeLt6KwTAsWCre855+4aS26W67Dv27jXlKpyyTR+xAS567AO
  36. wUXoPwVDAZ+XYgmO5h8guGQcfUI9imIpPCJUQJKSu6Fsz3/hSx+w5PnK9Tk3HMMs
  37. ZeW4WLP1n7bOp8rJS7a3pQcW3yFzpffyq5LH4MP5dAEsKEaivyaOAEfuWJ348dRo
  38. uqpPY4FcNlLc1HYIxfixwtf8XohdkRgEIrDi/QmPGfYsm76K3eFBPIHRtFhvBnmP
  39. kRWGxeoInUgcWgns/G/WDwB2y3Fw5zcf0KYVdDvBFagBEAFc8JAJTyAYDVputX1I
  40. KnsUXRY5/PqXflwWQnfb8kuRcxpOHtEtQN49gPpigmH+zpt7vN2UM0skaa0Fou88
  41. X6i/kGVU8XPxEWLdP91HGjKVlw7cxADfj+O8CMAmjxqDOxInkX4uFXJHoxBHb9LQ
  42. 8O+C4WhGTvt66VQDxOXZ+wVCrS2TK0Ug8xKmaTpBQAhlCcNWMWoyW7EorbFxJedo
  43. KrsPfZiWmHU=
  44. -----END CERTIFICATE-----
  45. 1 s:CN = Example Comapny
  46. i:CN = Example Comapny
  47. -----BEGIN CERTIFICATE-----
  48. MIIEJzCCAo+gAwIBAgIMW/Z8+RnPzxfpb3SDMA0GCSqGSIb3DQEBCwUAMC8xLTAr
  49. BgNVBAMTJFBHTmlHIE9EIE9icm90IERldGFsaWN6bnkgU3AuIHogby5vLjAeFw0x
  50. ODExMjIwOTU1MDVaFw0xOTExMjIwOTU1MDVaMC8xLTArBgNVBAMTJFBHTmlHIE9E
  51. IE9icm90IERldGFsaWN6bnkgU3AuIHogby5vLjCCAaIwDQYJKoZIhvcNAQEBBQAD
  52. ggGPADCCAYoCggGBANypN6Uq9ol8MULj0ErS1Pii8/GLTUcjXJW6zaS/VTl7dUiG
  53. dl+am2IQSozVIIfnvtoSrCIjebQm2PcW82Cprq9vz7p4rivHO2HQ3WjvSDmXBI1G
  54. 7tFe4xnrZYOscvoaf4IRc0okOQgI8h2B9rJWyppB6qFW55QRUStvhrW7EgVqWrWF
  55. 5NCtBMG2ThjO3nXOWbv8ApXklp3lW/JU1yf7H+XvHgjLs48QUyrsFElCS+Ve0Kve
  56. lSYaZccqhGbLGROTPO02boiIoT7kfMPykjV/h9B9oxAUw4lP1degk74k/MVML68U
  57. OBbY8uaO6SktxvLVQhmnk/u7jmF2qdMNy7H0magjEies/ctqd+QV7OP3rUxpAQsO
  58. K/PtWqtqiSt/ppeMbAvSzR5wsv1W0z1rW/EZHzaNKU5XkWfhJ9apeCRRR3niExk/
  59. d57F1PofgK5ZsV6TOx9kfdVBlVtxroRoKEa7fCTKFq5XtX617W7sbuE3LpUtsdcN
  60. ifYJ1RU/Ta2/SGQWOQIDAQABo0MwQTAPBgNVHRMBAf8EBTADAQH/MA8GA1UdDwEB
  61. /wQFAwMHBAAwHQYDVR0OBBYEFHKlhTlGegvaf5tc7ierwq2cQDXlMA0GCSqGSIb3
  62. DQEBCwUAA4IBgQBy0fuBros12hM/16tlyqMXWQp9yeZ7rBCVXR1Rr9NVhLOK2Pny
  63. 29LHrcXMxcWTtgqrmmozgxLPZ0rNwNQtBO3KF1plKHjD9HkQbVK26ghW0+oKb7qA
  64. TlWvF3bqmbQg2zaECaFGkadWuNKwgbdUi3JuIsL7Zy0JJp6a2P/wqzjV2io06vqB
  65. 5yWVoiyMvakR7qKyz8VKmFobmWfHrzvXW6Igl4x9KUZCn8SbcmX7wbNqTHEt7I04
  66. jbjkH+/PusIifi581N26Od7mW1gq37nKJl5J1Rm5IgrwRS14nzSnX7oOyUwIad67
  67. GkE0AhHTi2FHqKru0GyH9XIPFdWt0oY3mqdJxnVJQ+m6woyNu48kV5UeIMbqZoJ3
  68. Qzgo+XAjqMtulh7tJnyQ6NkebRpAcbQNJAl/ojIeK6wQtxh7SLrLE6dV8052Hwhz
  69. FuxcECpGMosPyrARDplgMQWpa0iL9cgMI2nZCDDXtevqDQHIKNYOeMabRaLY0pyn
  70. B0L3Zy0ccHc4u7o=
  71. -----END CERTIFICATE-----
  72. ---
  73. Server certificate
  74. subject=CN = odps03, O = Example Comapny
  75.  
  76. issuer=CN = Example Comapny
  77.  
  78. ---
  79. No client certificate CA names sent
  80. Peer signing digest: SHA256
  81. Peer signature type: RSA
  82. Server Temp Key: ECDH, P-256, 256 bits
  83. ---
  84. SSL handshake has read 2323 bytes and written 437 bytes
  85. Verification: OK
  86. ---
  87. New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384
  88. Server public key is 1024 bit
  89. Secure Renegotiation IS supported
  90. Compression: NONE
  91. Expansion: NONE
  92. No ALPN negotiated
  93. SSL-Session:
  94. Protocol : TLSv1.2
  95. Cipher : ECDHE-RSA-AES256-GCM-SHA384
  96. Session-ID: F2623A750CED893A63D3342B002F4AD963198DCA19BFC9740E0C4B6FD473BAE8
  97. Session-ID-ctx:
  98. Master-Key: B86C77D94565AC82396FAB12648AC5ACF4A0F707506C09DD7D8EE7A7D8ED61870E33E0C858A43DFCB219F78FEB388D9D
  99. PSK identity: None
  100. PSK identity hint: None
  101. SRP username: None
  102. Start Time: 1562933947
  103. Timeout : 7200 (sec)
  104. Verify return code: 0 (ok)
  105. Extended master secret: yes
  106. ---
  107.  
  108. ldapsearch -Z -H "ldaps://odps03:636" -D "cn=admin,dc=od,dc=pgnig,dc=pl" -d-1 "givenName=*"
  109. ldap_url_parse_ext(ldaps://odps03:636)
  110. ldap_create
  111. ldap_url_parse_ext(ldaps://odps03:636/??base)
  112. ldap_extended_operation_s
  113. ldap_extended_operation
  114. ldap_send_initial_request
  115. ldap_new_connection 1 1 0
  116. ldap_int_open_connection
  117. ldap_connect_to_host: TCP odps03:636
  118. ldap_new_socket: 3
  119. ldap_prepare_socket: 3
  120. ldap_connect_to_host: Trying 10.66.64.11:636
  121. ldap_pvt_connect: fd: 3 tm: -1 async: 0
  122. attempting to connect:
  123. connect success
  124. ldap_err2string
  125. ldap_start_tls: Can't contact LDAP server (-1)
  126. ldap_sasl_bind
  127. ldap_send_initial_request
  128. ldap_send_server_request
  129. ldap_err2string
  130. ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)
  131.  
  132. gdb ldapsearch
  133. set args -Z -LLL -H "ldaps://odps03:636" -D "cn=admin,dc=example.com" -b "cn=Users,dc=example,dc=com" -d -1 -W
  134. run
  135.  
  136. ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)
  137. [Inferior 1 (process 4388) exited with code 0377]
  138.  
  139. strace -f -o /tmp/lddapsearch.log ldapsearch -x -Z -H "ldaps://odps03:636" -D "cn=admin,dc=example,dc=com" -b "cn=Users,dc=example,dc=com" -d-1 -W
  140.  
  141. 12773 openat(AT_FDCWD, "/etc/ssl/certs/cacert.pem #ca-certificate.crt", O_RDONLY) = 2
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!