Re: is there any working example of how to use verify_hostname in command line?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



the openssl I'm using is in mac
openssl version -a
LibreSSL 2.8.3

On Thu, Mar 3, 2022 at 8:05 PM Edward Tsang <etsang@xxxxxxxxxx> wrote:
Ok here is what I tried but still complaining about unknown options -verify_hostname 
openssl s_client -connect google.com -CAfile etc/auth/cacert.pem -verify_hostname google.com -verify_return_error
unknown option -verify_hostname
usage: s_client args

On Thu, Mar 3, 2022 at 4:10 PM Viktor Dukhovni <openssl-users@xxxxxxxxxxxx> wrote:
[ External sender. Exercise caution. ]

> On 3 Mar 2022, at 6:09 pm, Edward Tsang via openssl-users <openssl-users@xxxxxxxxxxx> wrote:
>
> openssl s_client  -CApath . -CAfile ./cacert.pem -verify_hostname example.com
>
> All I get is "unknown option -verify_hostname
> usage: s_client args"
>
> Have tried combinations of that and check out of doc... really not helping.

You need to specify a server to connect to via the "-connect" option.  It
takes a hostname or IP address as a required argument, with an optional
":port" suffix.

        -connect www.example.com:443
        -connect 192.0.2.1:443
        -connect [::1]:443
        ...

You may also want "-brief" and "-verify_return_error".

--
        Viktor.



[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux