Matthias Bitterlich
2014-02-03 20:59:07 UTC
Hi,
kann es sein, dass 1&1 unterschiedliche "Sicherheits-Standards" verwendet - jeweils abhängig über welche Leitung der Nutzer kommt?
Ich habe mit mehreren System unterschiedlichen Alters je Leitung die gleichen Ergebnisse beim Aufruf von:
openssl s_client -starttls smtp -connect smtp.1und1.de:587
bzw.
openssl s_client -starttls smtp -connect 212.227.15.183:587
Telekom-DSL: ------------------------------------------------------------
New, TLSv1/SSLv3, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-RSA-AES256-GCM-SHA384
Session-ID: 66996A87A548B6F1B1B1629A5265DEBA16BB3DA147A3E113867893A3D516DF8A
Session-ID-ctx:
Master-Key: 17F03330901530BD1EE0FDB6C0B0413380A043DD72788050D21654074913430B9CE3B07F04445A787D5503056DD56F52
Key-Arg : None
PSK identity: None
PSK identity hint: None
SRP username: None
Start Time: 1391458843
Timeout : 300 (sec)
Verify return code: 0 (ok)
---
Postfix-Log: Feb 3 21:39:13 tux postfix/smtp[7101]: Trusted TLS connection established to smtp.1und1.de[212.227.15.183]:587: TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)
Interoute-DSL: ------------------------------------------------------------
New, TLSv1/SSLv3, Cipher is AES256-SHA
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
SSL-Session:
Protocol : TLSv1
Cipher : AES256-SHA
Session-ID: 4A1B961583A6F2425F46B455EE41EEA82383CF2963FC525A6338C132A18BC555
Session-ID-ctx:
Master-Key: 994D47F1E6E286A0B5C901BB2189BE65417B738B71BE7F21C4C5A433DA5046AF7738CFA6C1B6EFE11263ADF7199D0E6F
Key-Arg : None
Start Time: 1391458571
Timeout : 300 (sec)
Verify return code: 20 (unable to get local issuer certificate)
---
Postfix-Log: Feb 3 15:51:09 tux2 postfix/smtp[26448]: Trusted TLS connection established to smtp.1und1.de[212.227.15.183]:587: TLSv1 with cipher AES256-SHA (256/256 bits)
Gruß
Matthias
kann es sein, dass 1&1 unterschiedliche "Sicherheits-Standards" verwendet - jeweils abhängig über welche Leitung der Nutzer kommt?
Ich habe mit mehreren System unterschiedlichen Alters je Leitung die gleichen Ergebnisse beim Aufruf von:
openssl s_client -starttls smtp -connect smtp.1und1.de:587
bzw.
openssl s_client -starttls smtp -connect 212.227.15.183:587
Telekom-DSL: ------------------------------------------------------------
New, TLSv1/SSLv3, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-RSA-AES256-GCM-SHA384
Session-ID: 66996A87A548B6F1B1B1629A5265DEBA16BB3DA147A3E113867893A3D516DF8A
Session-ID-ctx:
Master-Key: 17F03330901530BD1EE0FDB6C0B0413380A043DD72788050D21654074913430B9CE3B07F04445A787D5503056DD56F52
Key-Arg : None
PSK identity: None
PSK identity hint: None
SRP username: None
Start Time: 1391458843
Timeout : 300 (sec)
Verify return code: 0 (ok)
---
Postfix-Log: Feb 3 21:39:13 tux postfix/smtp[7101]: Trusted TLS connection established to smtp.1und1.de[212.227.15.183]:587: TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)
Interoute-DSL: ------------------------------------------------------------
New, TLSv1/SSLv3, Cipher is AES256-SHA
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
SSL-Session:
Protocol : TLSv1
Cipher : AES256-SHA
Session-ID: 4A1B961583A6F2425F46B455EE41EEA82383CF2963FC525A6338C132A18BC555
Session-ID-ctx:
Master-Key: 994D47F1E6E286A0B5C901BB2189BE65417B738B71BE7F21C4C5A433DA5046AF7738CFA6C1B6EFE11263ADF7199D0E6F
Key-Arg : None
Start Time: 1391458571
Timeout : 300 (sec)
Verify return code: 20 (unable to get local issuer certificate)
---
Postfix-Log: Feb 3 15:51:09 tux2 postfix/smtp[26448]: Trusted TLS connection established to smtp.1und1.de[212.227.15.183]:587: TLSv1 with cipher AES256-SHA (256/256 bits)
Gruß
Matthias