{"id":1957,"date":"2017-03-05T18:10:26","date_gmt":"2017-03-05T18:10:26","guid":{"rendered":"https:\/\/tst-amo.pp.ua\/blog\/?p=1957"},"modified":"2017-03-05T18:14:43","modified_gmt":"2017-03-05T18:14:43","slug":"openssl-%d0%bf%d1%80%d0%be%d0%b2%d0%b5%d1%80%d0%ba%d0%b0-pop3-imap-smtp-web-%d1%81%d0%b5%d1%80%d0%b2%d0%b5%d1%80%d0%b0-%d1%81-tlssslsasl","status":"publish","type":"post","link":"https:\/\/tst-amo.net.ua\/blog\/?p=1957","title":{"rendered":"OpenSSL – \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 POP3, IMAP, SMTP, WEB \u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0441 TLS\/SSL\/SASL"},"content":{"rendered":"

\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 OpenSSL \u0434\u043b\u044f \u0442\u0435\u0441\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f POP3, IMAP, SMTP, WEB \u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0441 TLS\/SSL\/SASL<\/p>\n

POP3<\/h4>\n

\u0414\u043b\u044f \u0442\u0435\u0441\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0440\u0430\u0431\u043e\u0442\u044b TLS\/SSL \u043d\u0430 POP3 \u0441\u0435\u0440\u0432\u0435\u0440\u0435 \u043c\u043e\u0436\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0432\u0445\u043e\u0434\u044f\u0449\u0438\u0439 \u0432
\n\u0441\u043e\u0441\u0442\u0430\u0432 OpenSSL \u043a\u043b\u0438\u0435\u043d\u0442 s_client (\u0434\u043b\u044f \u0442\u0435\u0441\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f SSL-\u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 \u043f\u043e \u0430\u043d\u0430\u043b\u043e\u0433\u0438\u0438 \u043c\u043e\u0436\u043d\u043e
\n\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c s_server):<\/p>\n

openssl s_client -connect \u0438\u043c\u044f_\u0445\u043e\u0441\u0442\u0430:995<\/pre>\n
\u043f\u043e\u0441\u043b\u0435 \u0447\u0435\u0433\u043e \u043c\u043e\u0436\u043d\u043e \u0441\u044d\u043c\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0442\u0438\u043f\u0438\u0447\u043d\u0443\u044e POP3-\u0441\u0435\u0441\u0441\u0438\u044e:<\/p>\n
 +OK Dovecot ready.\r\n user \u043b\u043e\u0433\u0438\u043d\r\n +OK\r\n pass \u043f\u0430\u0440\u043e\u043b\u044c\r\n +OK Logged in.<\/pre>\n
\u0432\u044b\u0432\u043e\u0434\u0438\u043c \u0441\u043f\u0438\u0441\u043e\u043a \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0439 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435 \u0438 \u0438\u0445 \u0440\u0430\u0437\u043c\u0435\u0440:<\/p>\n
 list\r\n +OK 2 messages:\r\n 1 1759\r\n 2 12422<\/pre>\n
\u0447\u0438\u0442\u0430\u0435\u043c \u043f\u0435\u0440\u0432\u043e\u0435 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0435:<\/p>\n
 retr 1\r\n +OK 1759 octets\r\n \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u0438 \u0438 \u0442\u0435\u043a\u0441\u0442<\/pre>\n
IMAP<\/h4>\n
\u0422\u0435\u0441\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 IMAP \u043f\u0440\u043e\u0432\u043e\u0434\u0438\u0442\u0441\u044f \u0432 \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0438\u0438 \u0441 \u0442\u0435\u043c\u0438 \u0436\u0435 \u043f\u0440\u0438\u043d\u0446\u0438\u043f\u0430\u043c\u0438:<\/p>\n
 openssl s_client -connect imap_\u0445\u043e\u0441\u0442:993\r\n CONNECTED(00000003)\r\n ....\r\n * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE AUTH=PLAIN AUTH=LOGIN] Dovecot ready.\r\n login \u043b\u043e\u0433\u0438\u043d \u043f\u0430\u0440\u043e\u043b\u044c\r\n a001 OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR ... CONTEXT=SEARCH LIST-STATUS QUOTA] Logged in<\/pre>\n
\u0432\u044b\u0432\u043e\u0434\u0438\u043c \u0441\u043f\u0438\u0441\u043e\u043a \u043f\u0430\u043f\u043e\u043a:<\/p>\n
 a002 list \"\" \"*\"\r\n * LIST (\\HasChildren) \".\" \"INBOX\"\r\n * LIST (\\HasNoChildren) \".\" \"INBOX.INBOX_Trash\"\r\n * LIST (\\HasNoChildren) \".\" \"INBOX.Trash\"\r\n * LIST (\\HasNoChildren) \".\" \"INBOX.read\"\r\n * LIST (\\HasNoChildren) \".\" \"INBOX.Queue\"\r\n * LIST (\\HasNoChildren) \".\" \"INBOX.INBOX_Drafts\"<\/pre>\n
\u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0438\u043c \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u043e\u0435 \u043f\u0430\u043f\u043a\u0438 Inbox:<\/p>\n
 a003 examine inbox\r\n * FLAGS (\\Answered \\Flagged \\Deleted \\Seen \\Draft Junk NonJunk)\r\n * OK [PERMANENTFLAGS ()] Read-only mailbox.\r\n * 10 EXISTS\r\n * 0 RECENT\r\n * OK [UNSEEN 1] First unseen.\r\n * OK [UIDVALIDITY 1291459647] UIDs valid\r\n * OK [UIDNEXT 8026] Predicted next UID\r\n * OK [HIGHESTMODSEQ 2710] Highest\r\n a003 OK [READ-ONLY] Select completed.<\/pre>\n
\u0412 \u043f\u0430\u043f\u043a\u0435 10 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u0439, \u0432\u044b\u0432\u0435\u0434\u0435\u043c \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u043e\u0435 \u0442\u0435\u043a\u0441\u0442\u0430 \u0447\u0435\u0442\u0432\u0435\u0440\u0442\u043e\u0433\u043e \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u044f, \u0431\u0435\u0437 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u043e\u0432:<\/p>\n
 a004 4 rfc822.text\r\n * 4 FETCH (RFC822.TEXT {857}\r\n \u0442\u0435\u043a\u0441\u0442\r\n a005 OK Fetch completed.<\/pre>\n
\u0432\u044b\u0445\u043e\u0434\u0438\u043c<\/p>\n
 a005 logout\r\n * BYE Logging out\r\n a005 OK Logout completed.<\/pre>\n
\u0422\u0435\u0441\u0442\u0438\u0440\u0443\u0435\u043c \u0441\u0430\u0439\u0442 \u043f\u043e SHTTP:<\/h4>\n
openssl s_client -connect www.test.com:443\r\nGET \/ HTTP\/1.1\r\nHost: test.com<\/pre>\n
SASL<\/h4>\n
\u041f\u0440\u043e\u0432\u0435\u0440\u044f\u0435\u043c SASL-\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044e \u043f\u0440\u0438 \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0435 \u043f\u043e\u0447\u0442\u044b:<\/p>\n
openssl s_client -connect smtp_\u0445\u043e\u0441\u0442:25 -starttls smtp\r\n\r\n 220 mail.test.com ESMTP Postfix\r\n EHLO test.test.com\r\n 250-mail.test.com\r\n 250-PIPELINING\r\n 250-SIZE 10240000\r\n 250-ETRN\r\n 250-AUTH DIGEST-MD5 PLAIN CRAM-MD5\r\n 250 8BITMIME\r\n AUTH PLAIN \u043f\u0430\u0440\u043e\u043b\u044c_\u0432_base64_\u043d\u043e\u0442\u0430\u0446\u0438\u0438\r\n 235 Authentication successful<\/pre>\n
BASE64<\/h4>\n
\u041f\u0435\u0440\u0435\u043a\u043e\u0434\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0444\u0430\u0439\u043b \u0441 \u043f\u0430\u0440\u043e\u043b\u0435\u043c \u0432 base64-\u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u043c\u043e\u0436\u043d\u043e \u043a\u043e\u043c\u0430\u043d\u0434\u043e\u0439:<\/p>\n
openssl enc -base64 -in file.txt -out mfile.b64<\/pre>\n
\u0434\u0435\u043a\u043e\u0434\u0438\u0440\u043e\u0432\u0430\u0442\u044c:<\/p>\n
openssl enc -d -base64 -in file.b64 -out file.txt<\/pre>\n
\u0414\u0440\u0443\u0433\u0438\u0435 \u043f\u043e\u043b\u0435\u0437\u043d\u044b\u0435 \u043a\u043e\u043c\u0430\u043d\u0434\u044b:<\/h4>\n
\u0428\u0438\u0444\u0440\u0443\u0435\u043c \u0444\u0430\u0439\u043b \u0441\u0438\u043c\u043c\u0435\u0442\u0440\u0438\u0447\u043d\u044b\u043c \u0448\u0438\u0444\u0440\u043e\u043c blowfish<\/em> (\u0435\u0441\u043b\u0438 \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e \u0441\u043e\u0445\u0440\u0430\u043d\u0435\u043d\u0438\u0435 \u0432
\nbase64-\u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u0438\u0438 \u0434\u043e\u0431\u0430\u0432\u043b\u044f\u0435\u043c \u043e\u043f\u0446\u0438\u044e “-a”):<\/p>\n
 openssl enc -e -salt -bf -in file.txt -out file.blowfish\r\n enter bf-cbc encryption password: \u043f\u0430\u0440\u043e\u043b\u044c<\/pre>\n
\u0440\u0430\u0441\u0448\u0438\u0444\u0440\u043e\u0432\u044b\u0432\u0430\u0435\u043c:<\/p>\n
 openssl enc -d -bf -in file.blowfish -out file.txt\r\n enter bf-cbc decryption password: \u043f\u0430\u0440\u043e\u043b\u044c<\/pre>\n
\u0420\u0430\u0441\u0441\u0447\u0438\u0442\u044b\u0432\u0430\u0435\u043c SHA1-\u0445\u044d\u0448<\/em> \u0434\u043b\u044f \u0444\u0430\u0439\u043b\u0430:<\/p>\n
 openssl dgst -sha1 -c file.txt\r\n SHA1(test.txt)= 15:85:f1:af:a7:ca:1c:1c:5a:8b:c3:a7:1e:7f:4b:bd:3c:d4:22:ca<\/pre>\n
\u0414\u043b\u044f \u043f\u0435\u0440\u0435\u0445\u0432\u0430\u0442\u0430 \u0438 \u0440\u0430\u0441\u0448\u0438\u0444\u0440\u043e\u0432\u043a\u0438 SSL\/TLS \u0442\u0440\u0430\u0444\u0438\u043a\u0430 \u0432 \u043e\u0442\u043b\u0430\u0434\u043e\u0447\u043d\u044b\u0445 \u0446\u0435\u043b\u044f\u0445 \u043c\u043e\u0436\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0443\u0442\u0438\u043b\u0438\u0442\u0443 ssldump<\/em>:<\/p>\n
\u043d\u0430\u0431\u043b\u044e\u0434\u0435\u043d\u0438\u0435 \u0437\u0430 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u044c\u044e \u0432\u043d\u0443\u0442\u0440\u0438 SSL-\u0441\u0435\u0441\u0441\u0438\u0438:<\/p>\n
ssldump -a -A -H -i eth0<\/pre>\n
\u0441\u043e \u0441\u043b\u0443\u0436\u0435\u0431\u043d\u044b\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u043c\u0438 \u0434\u043b\u044f \u043f\u043e\u043b\u043d\u043e\u0439 \u043e\u0442\u043b\u0430\u0434\u043a\u0438 SSL-\u0441\u0435\u0441\u0441\u0438\u0438:<\/p>\n
ssldump -a -A -H -k server.pem -i eth0<\/pre>\n
\u0434\u043b\u044f \u0440\u0430\u0441\u0448\u0438\u0444\u0440\u043e\u0432\u043a\u0438 \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c\u043e\u0433\u043e \u0441\u0435\u0441\u0441\u0438\u0438:<\/p>\n
ssldump -d -k server.pem -i eth0<\/pre>\n
\u0414\u043b\u044f \u0443\u0441\u043f\u0435\u0448\u043d\u043e\u0439 \u0440\u0430\u0441\u0448\u0438\u0444\u0440\u043e\u0432\u043a\u0438 SSL-\u0441\u0435\u0441\u0441\u0438\u044f \u0434\u043e\u043b\u0436\u043d\u0430 \u0431\u044b\u0442\u044c \u043f\u0435\u0440\u0435\u0445\u0432\u0430\u0447\u0435\u043d\u0430 \u0441 \u0441\u0430\u043c\u043e\u0433\u043e \u043d\u0430\u0447\u0430\u043b\u0430,
\n\u0432\u043a\u043b\u044e\u0447\u0430\u044f \u043c\u043e\u043c\u0435\u043d\u0442 \u043e\u0431\u043c\u0435\u043d\u0430 \u043a\u043b\u044e\u0447\u0430\u043c\u0438 \u043d\u0430 \u0441\u0442\u0430\u0434\u0438\u0438 \u0438\u043d\u0438\u0446\u0438\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0441\u0435\u0441\u0441\u0438\u0438.<\/p>\n
\"image_pdf\"<\/a>\"image_print\"<\/a><\/div>","protected":false},"excerpt":{"rendered":"
\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 OpenSSL \u0434\u043b\u044f \u0442\u0435\u0441\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f POP3, IMAP, SMTP, WEB \u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0441 TLS\/SSL\/SASL POP3 \u0414\u043b\u044f \u0442\u0435\u0441\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0440\u0430\u0431\u043e\u0442\u044b TLS\/SSL \u043d\u0430 POP3 \u0441\u0435\u0440\u0432\u0435\u0440\u0435 \u043c\u043e\u0436\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0432\u0445\u043e\u0434\u044f\u0449\u0438\u0439 \u0432 \u0441\u043e\u0441\u0442\u0430\u0432 OpenSSL \u043a\u043b\u0438\u0435\u043d\u0442 s_client (\u0434\u043b\u044f \u0442\u0435\u0441\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f SSL-\u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 \u043f\u043e \u0430\u043d\u0430\u043b\u043e\u0433\u0438\u0438 \u043c\u043e\u0436\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c s_server): openssl s_client -connect \u0438\u043c\u044f_\u0445\u043e\u0441\u0442\u0430:995 \u043f\u043e\u0441\u043b\u0435 \u0447\u0435\u0433\u043e \u043c\u043e\u0436\u043d\u043e \u0441\u044d\u043c\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0442\u0438\u043f\u0438\u0447\u043d\u0443\u044e POP3-\u0441\u0435\u0441\u0441\u0438\u044e: +OK Dovecot ready. user \u043b\u043e\u0433\u0438\u043d +OK pass \u043f\u0430\u0440\u043e\u043b\u044c +OK Logged …<\/p>\n
Continue reading ‘OpenSSL – \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 POP3, IMAP, SMTP, WEB \u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0441 TLS\/SSL\/SASL’ »<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[33,7,32,34,35],"tags":[],"class_list":["post-1957","post","type-post","status-publish","format-standard","hentry","category-imap","category-mail","category-openssl","category-pop3","category-35"],"_links":{"self":[{"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=\/wp\/v2\/posts\/1957"}],"collection":[{"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1957"}],"version-history":[{"count":2,"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=\/wp\/v2\/posts\/1957\/revisions"}],"predecessor-version":[{"id":1960,"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=\/wp\/v2\/posts\/1957\/revisions\/1960"}],"wp:attachment":[{"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1957"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1957"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/tst-amo.net.ua\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1957"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}