我想确保 SSL/TLS 连接确实在端口 465 上建立到我的 SMTP 服务器。(服务器在 Ubuntu 14.04 上运行)
使用:-
openssl s_client -connect example.co.uk:465
我得到如下所示的响应...
请注意,我收到了以下消息:-
“验证返回码:20(无法获得本地颁发者证书)”
但是,我可以继续与 EHLO 和 AUTH LOGIN 对话。
这是否意味着我“不在”安全连接上,并继续未加密?
谢谢约翰
CONNECTED(00000003)
---
Certificate chain
0 s:/CN=example.co.uk
i:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
1 s:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
i:/O=Digital Signature Trust Co./CN=DST Root CA X3
---
Server certificate
-----BEGIN CERTIFICATE-----
<removed for clarity>
-----END CERTIFICATE-----
subject=/CN=example.co.uk
issuer=/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
---
No client certificate CA names sent
---
SSL handshake has read 3050 bytes …