SSLv3 Poodle

Matt

Owner
Quick example hitting the cPanel interface using TLS1
Code:
root@debian:/home/backup# openssl s_client -tls1 -connect cpanel.mattwservices.co.uk:2083   
CONNECTED(00000003)
depth=3 C = SE, O = AddTrust AB, OU = AddTrust External TTP Network, CN = AddTrust External CA Root
verify error:num=19:self signed certificate in certificate chain
verify return:0
---
Certificate chain
0 s:/OU=Domain Control Validated/OU=PositiveSSL/CN=cpanel.mattwservices.co.uk
   i:/C=GB/ST=Greater Manchester/L=Salford/O=COMODO CA Limited/CN=COMODO RSA Domain Validation Secure Server CA
1 s:/C=SE/O=AddTrust AB/OU=AddTrust External TTP Network/CN=AddTrust External CA Root
   i:/C=SE/O=AddTrust AB/OU=AddTrust External TTP Network/CN=AddTrust External CA Root
2 s:/C=GB/ST=Greater Manchester/L=Salford/O=COMODO CA Limited/CN=COMODO RSA Certification Authority
   i:/C=SE/O=AddTrust AB/OU=AddTrust External TTP Network/CN=AddTrust External CA Root
3 s:/C=GB/ST=Greater Manchester/L=Salford/O=COMODO CA Limited/CN=COMODO RSA Domain Validation Secure Server CA
   i:/C=GB/ST=Greater Manchester/L=Salford/O=COMODO CA Limited/CN=COMODO RSA Certification Authority
---
Server certificate
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgIQHulaefdY/p5PfKWURjAC2DANBgkqhkiG9w0BAQsFADCB
kDELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G
A1UEBxMHU2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxNjA0BgNV
BAMTLUNPTU9ETyBSU0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZlciBD
QTAeFw0xNDAyMjIwMDAwMDBaFw0xNTAyMjIyMzU5NTlaMF4xITAfBgNVBAsTGERv
bWFpbiBDb250cm9sIFZhbGlkYXRlZDEUMBIGA1UECxMLUG9zaXRpdmVTU0wxIzAh
BgNVBAMTGmNwYW5lbC5tYXR0d3NlcnZpY2VzLmNvLnVrMIIBIjANBgkqhkiG9w0B
AQEFAAOCAQ8AMIIBCgKCAQEAyBpW17M40/38T1dnKNwrynO5cd/B16sG5I3+Xelm
WxVQOKFsBrElZhFll7CxDhmNX7NM/rBu409L8X8FVydhmtxuM3Okc6YL2OhOT9yB
Y+kNYaKeNdFa94fIniGVtvVj11Ov+JhFak+k9kWHSqSL5C6r0VL0s+PIiR7hwPuI
XIwGtMguAKR0tb+fwv5T1BWKPXKD5Rvdsd418+GU8NOSxAIMoZCncKtie7tbdwTF
dDF3K3XLuFVpe0aDg8ORMnduMCzJ4DWOITXLXmmrdItGPaA0D7OiVO83T/ArTZgo
RQ2Lz2HVzE91IqiB0i8JAwZpjZjZnGxTTP4PEoHOKJ53/wIDAQABo4IB+DCCAfQw
HwYDVR0jBBgwFoAUkK9qOpRaC9iQ6hJWc99DtDoo2ucwHQYDVR0OBBYEFKVyVDsb
rb6yVdmpNaOhyAda8in/MA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0G
A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBQBgNVHSAESTBHMDsGDCsGAQQB
sjEBAgEDBDArMCkGCCsGAQUFBwIBFh1odHRwczovL3NlY3VyZS5jb21vZG8ubmV0
L0NQUzAIBgZngQwBAgEwVAYDVR0fBE0wSzBJoEegRYZDaHR0cDovL2NybC5jb21v
ZG9jYS5jb20vQ09NT0RPUlNBRG9tYWluVmFsaWRhdGlvblNlY3VyZVNlcnZlckNB
LmNybDCBhQYIKwYBBQUHAQEEeTB3ME8GCCsGAQUFBzAChkNodHRwOi8vY3J0LmNv
bW9kb2NhLmNvbS9DT01PRE9SU0FEb21haW5WYWxpZGF0aW9uU2VjdXJlU2VydmVy
Q0EuY3J0MCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5jb21vZG9jYS5jb20wRQYD
VR0RBD4wPIIaY3BhbmVsLm1hdHR3c2VydmljZXMuY28udWuCHnd3dy5jcGFuZWwu
bWF0dHdzZXJ2aWNlcy5jby51azANBgkqhkiG9w0BAQsFAAOCAQEAfKwJnI4t+eyK
ji9zPOhu/ce+yiyFazLdGkfMHWSO4e0tqpxmT7dGagOnUj8mWWtn+lftBpEnaKD2
AKUvtxRgH9ZLSwciFo+dCAPF2kSV8aMFLEPbj0cUYdU4011863Rv0BAjuYF7tM1n
dGZSPf830saXgEgWl7sbOkgY21qsHbOVN5ufZKShf9F2u+vGRsdb5IvF5K3z6FaW
Q0mytJf0yFIchIWKMQknrQepWwMCW2duJ9iFSw/UzfiSZW3B97qmlVxS3aqXzOSn
Ba9PgyIpqsS+vD1PL/xQUx65MeUtNzlTN/aBU6m0ugmeChlQZn2wUOUdFG1aQvRS
PQP8QNRJZg==
-----END CERTIFICATE-----
subject=/OU=Domain Control Validated/OU=PositiveSSL/CN=cpanel.mattwservices.co.uk
issuer=/C=GB/ST=Greater Manchester/L=Salford/O=COMODO CA Limited/CN=COMODO RSA Domain Validation Secure Server CA
---
No client certificate CA names sent
---
SSL handshake has read 5759 bytes and written 540 bytes
---
New, TLSv1/SSLv3, Cipher is AES256-SHA
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
SSL-Session:
    Protocol  : TLSv1
    Cipher    : AES256-SHA
    Session-ID: 30C3162DC49117C4711691F090B31F613BB3E5E40CB45ACFD054C7525B5E4784
    Session-ID-ctx:
    Master-Key: 820B299A7EBA55E0D107E7634EFA5F203A70936FFC2EFB07D0D12B7706AF523C940FAB7114C2CF0148474955F6003F68
    Key-Arg   : None
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    TLS session ticket lifetime hint: 7200 (seconds)
    TLS session ticket:
    0000 - 91 dd 77 f1 f6 06 0e 2e-41 28 00 ee d1 7d 0c 25   ..w.....A(...}.%
    0010 - 7e 56 2b 2d f6 d4 d5 3a-cd 44 fe e8 32 48 ce de   ~V+-...:.D..2H..
    0020 - c0 23 d2 76 09 fd 87 e5-73 fd b1 db 3d db 9d 9c   .#.v....s...=...
    0030 - 8f 72 66 dd b6 84 b3 4e-2a d0 60 82 6c dd eb fc   .rf....N*.`.l...
    0040 - 96 6a 5b d9 1f 15 7a 66-21 47 7a 3c cb 04 aa 1b   .j[...zf!Gz<....
    0050 - 35 b0 1e 9e 28 ba 5d 2b-44 63 1a 35 88 b2 0b fb   5...(.]+Dc.5....
    0060 - 36 f4 5e ab 58 01 77 be-f5 96 df 1c 3e 0a 6a 1e   6.^.X.w.....>.j.
    0070 - 85 0e 5b ef 8d 4a 47 39-f5 d2 7f ab 04 46 a3 06   ..[..JG9.....F..
    0080 - 81 11 c3 bb dc f7 75 34-c7 e8 08 ef 74 26 5b 8b   ......u4....t&[.
    0090 - c4 cd 7e d6 30 35 5b 4c-eb 1d 35 f9 c7 f2 73 5f   ..~.05[L..5...s_

    Start Time: 1413683484
    Timeout   : 7200 (sec)
    Verify return code: 19 (self signed certificate in certificate chain)
---
q^C

SSLv3 (fails)
Code:
root@debian:/home/backup# openssl s_client -ssl3 -connect cpanel.mattwservices.co.uk:2083
CONNECTED(00000003)
140707398104744:error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure:s3_pkt.c:1258:SSL alert number 40
140707398104744:error:1409E0E5:SSL routines:SSL3_WRITE_BYTES:ssl handshake failure:s3_pkt.c:596:
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 7 bytes and written 0 bytes
---
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
SSL-Session:
    Protocol  : SSLv3
    Cipher    : 0000
    Session-ID:
    Session-ID-ctx:
    Master-Key:
    Key-Arg   : None
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    Start Time: 1413683510
    Timeout   : 7200 (sec)
    Verify return code: 0 (ok)
---
 
Top