Force cypher suite

[Russell.Butturini at Healthways.com (Butturini, Russell)]

If memory serves there is a script in newer versions of nmap that will
spit out the support cipher suites if port 443 is found open too.

-----Original Message-----
From: pauldotcom-bounces at mail.pauldotcom.com
[mailto:pauldotcom-bounces at mail.pauldotcom.com] On Behalf Of Michael
Dickey
Sent: Thursday, January 21, 2010 12:10 PM
To: genesiswave at gmail.com; PaulDotCom Security Weekly Mailing List
Subject: Re: [Pauldotcom] Force cypher suite

If you`re just wanting to test what ciphers get allowed, you can do
that with thcsslscan. I hope that name is correct...but it`s something
from thc. openssl will work, too, but is a bit more manual.

On 1/18/10, genesiswave at gmail.com <genesiswave at gmail.com> wrote:
> We are testing our WAF at work and I was wondering if anyone had a
> suggestion to force specific cypher suites when connecting to the
sites
> behind the WAF
> Is curl a possibility?
> Sent via BlackBerry from T-Mobile
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom at mail.pauldotcom.com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com
_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com


******************************************************************************
This email contains confidential and proprietary information and is not to be used or disclosed to anyone other than 
the named recipient of this email, 
and is to be used only for the intended purpose of this communication.
******************************************************************************