cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

How can we verify NAM supported deciphers?

haiders
Inactive

Hi Team,

I wanted to check the which cipher is supported by NAM 2018 version.

we know that "Diffie Helman key exchange" is not supported by NAM what i am interested in couple of TLS version which are TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 and TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384.

In rcon i ran "ssldecr ciphers" which gave me list of all cipher available.

PFA for the output for the same.

Sample output:

- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 id=0xc028 keyx=ECDHE sign=RSA enc=AES-256-CBC dig=SHA384 lib-supp=N ref=614432

- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 id=0xc030 keyx=ECDHE sign=RSA enc=aes-256-gcm dig=SHA384 lib-supp=Y ref=692

+ TLS_RSA_WITH_AES_128_CBC_SHA id=0x002f keyx=RSA sign=RSA enc=AES-128-CBC dig=SHA lib-supp=Y ref=5194230

i need couple of clarification regarding the output format>

1) what does + - signifies here at the starting of each line?

2) what does lib-supp=Y stands for?


Best regards,

Syed Haider


Ciphers status DT.txt


1 REPLY 1

olga_wall
Participant

Hello Syed,

the + and - before the cipher indicate whether the NAM Probe supports the decryption of this cipher suite. This is referenced here.

As far as lib-supp=Y is concerned, I can make only an educated guess, so anyone, please correct me if I'm wrong. I think, this might indicate library support (yes/no).