Nmap Development mailing list archives
Re: How to find out if SMTP mailserver supports STARTTLS or (only) SSL/TLS ?
From: Jasey DePriest <jrdepriest () gmail com>
Date: Sat, 21 Oct 2017 20:19:14 -0500
I don't have a good server to test with, but the EHLO command should tell you what the server offers. I'm not sure if it can tell the difference between STARTTL and just TLS. https://nmap.org/nsedoc/scripts/smtp-commands.html PORT STATE SERVICE REASON VERSION 25/tcp open smtp syn-ack Microsoft ESMTP 6.0.3790.3959 | smtp-commands: SMTP.domain.com Hello [172.x.x.x], TURN, SIZE, ETRN, PIPELINING, DSN, ENHANCEDSTATUSCODES, 8bitmime, BINARYMIME, CHUNKING, VRFY, X-EXPS GSSAPI NTLM LOGIN, X-EXPS=LOGIN, AUTH GSSAPI NTLM LOGIN, AUTH=LOGIN, X-LINK2STATE, XEXCH50, OK |_ This server supports the following commands: HELO EHLO STARTTLS RCPT DATA RSET MAIL QUIT HELP AUTH TURN ETRN BDAT VRFY Nmap Site Navigation Intro <https://nmap.org/> Reference Guide <https://nmap.org/book/man.html> Book <https://nmap.org/book/> Install Guide <https://nmap.org/book/install.html> Download <https://nmap.org/download.html> Changelog <https://nmap.org/changelog.html> Zenmap GUI <https://nmap.org/zenmap/> Docs <https://nmap.org/docs.html> Bug Reports <https://nmap.org/book/man-bugs.html> OS Detection <https://nmap.org/book/osdetect.html> Propaganda <https://nmap.org/nmap_propaganda.html> Related Projects <https://nmap.org/projects.html> In the Movies <https://nmap.org/movies/> In the News <https://nmap.org/nmap_inthenews.html>[ Nmap <https://nmap.org/> | Sec Tools <http://sectools.org/> | Mailing Lists <http://seclists.org/> | Site News <http://insecure.org/> | About/Contact <http://insecure.org/fyodor/> | Advertising <http://insecure.org/advertising.html> | Privacy <http://insecure.org/privacy.html> ] On Sat, Oct 21, 2017 at 1:17 AM, Ben Stover via dev <dev () nmap org> wrote:
Assume a (remote) smtp mailserver smtp.foobar.com listens either on port 465 or port 587. How can I find out (with nmap/netcat) if this smtp mailserver supports STARTTLS protocol or (only) SSL/TLS? Or both ? Thank you Ben _______________________________________________ Sent through the dev mailing list https://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
_______________________________________________ Sent through the dev mailing list https://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- How to find out if SMTP mailserver supports STARTTLS or (only) SSL/TLS ? Ben Stover via dev (Oct 20)
- Re: How to find out if SMTP mailserver supports STARTTLS or (only) SSL/TLS ? Jasey DePriest (Oct 21)
- Re: How to find out if SMTP mailserver supports STARTTLS or (only) SSL/TLS ? Watson, Patrick (Oct 23)
- Re: How to find out if SMTP mailserver supports STARTTLS or (only) SSL/TLS ? Dave Horsfall (Oct 29)
- <Possible follow-ups>
- Re: How to find out if SMTP mailserver supports STARTTLS or (only) SSL/TLS ? Ben Stover via dev (Oct 25)
- Re: How to find out if SMTP mailserver supports STARTTLS or (only) SSL/TLS ? Watson, Patrick (Oct 26)
- Re: How to find out if SMTP mailserver supports STARTTLS or (only) SSL/TLS ? Jasey DePriest (Oct 26)
- Re: How to find out if SMTP mailserver supports STARTTLS or (only) SSL/TLS ? Watson, Patrick (Oct 26)
- Re: How to find out if SMTP mailserver supports STARTTLS or (only) SSL/TLS ? Jasey DePriest (Oct 21)