我有一台较旧的 CentOS 服务器,它不允许我从其访问任何 SSL 网站(我需要它来使用 Composer)。IPTables 似乎很好,当我运行它时,我得到了以下信息:
iptables -S -P 输入接受 -P 转发接受 -P 输出接受
是否有其他程序可能正在执行此操作?我没有发现任何防火墙正在运行。
openssl s_client-connect getcomposer.org:443
CONNECTED(00000003) 深度=2 C = US,O = DigiCert Inc,OU = www.digicert.com,CN = DigiCert Global Root CA 验证返回:1 深度=1 C = US,O = DigiCert Inc,CN = DigiCert SHA2 Secure Server CA 验证返回:1 深度=0 C = DE,L = Berlin,O = Packagist Conductors UG (haftungsbeschr\C3\A4nkt),CN = getcomposer.org
验证返回:1
证书链 0 s:/C=DE/L=Berlin/O=Packagist Conductors UG (haftungsbeschr\xC3\xA4nkt)/CN=getcomposer.org i:/C=US/O=DigiCert Inc/CN=DigiCert SHA2 安全服务器 CA 1 s:/C=US/O=DigiCert Inc/CN=DigiCert SHA2 安全服务器 CA
i:/C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert 全球根 CA
服务器证书 -----开始证书----- MIIFNDCCBBygAwIBAgIQDX53f8WI3kAqaxL0dihiYTANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTcwNzEyMDAwMDAwWhcN MjAwODI1MTIwMDAwWjBwMQswCQYDVQQGEwJERTEPMA0GA1UEBxMGQmVybGluMTYw NAYDVQQKDC1QYWNrYWdpc3QgQ29uZHVjdG9ycyBVRyAoaGFmdHVuZ3NiZXNjaHLD pG5rdCkxGDAWBgNVBAMTD2dldGNvbXBvc2VyLm9yZzCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAM4BEP87WpGJOrEwV8mbpIO+qaEDMxgj0wZKPslnKgqf l+kTDOsvwUO+d5hQESg87/9BxnCvwZqzErqxBiEP46g8nZMICl16xeiqE61aiMQj eYEr8R2YFGVG0yZ5WReMCpiQkXxvPSxkzaPukAKzqYjbHjqTMoYJMtFPz73c+0Te eUA4bENz7RhLC+86tlrZKxuXwx1o6KcFBFBmIuOl4vspP6AIJd+pzqctEZer5nnm 3xJ4BVcLDCtiqbPgFF62Lib+x6s0iCuTTYS2klD5GSvb8shSJTIrLLrQDeq0QtjZ f/0UXGQCbxxErs/FeoQTYwAbLN2I4OPy3C+pKrqD4isCAwEAAaOCAeswggHnMB8G A1UdIwQYMBaAFA+AYRyCMWHVLyjnjUY4tCzhxtniMB0GA1UdDgQWBBRud+hiM13r jtLi7Xlmj1IjavZzGDAvBgNVHREEKDAmgg9nZXRjb21wb3Nlci5vcmeCE3d3dy5n ZXRjb21wb3Nlci5vcmcwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjBrBgNVHR8EZDBiMC+gLaArhilodHRwOi8vY3JsMy5kaWdp Y2VydC5jb20vc3NjYS1zaGEyLWcxLmNybDAvoC2gK4YpaHR0cDovL2NybDQuZGln aWNlcnQuY29tL3NzY2Etc2hhMi1nMS5jcmwwTAYDVR0gBEUwQzA3BglghkgBhv1s AQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAI BgZngQwBAgIwfAYIKwYBBQUHAQEEcDBuMCQGCCsGAQUFBzABhhhodHRwOi8vb2Nz cC5kaWdpY2VydC5jb20wRgYIKwYBBQUHMAKGOmh0dHA6Ly9jYWNlcnRzLmRpZ2lj ZXJ0LmNvbS9EaWdpQ2VydFNIQTJTZWN1cmVTZXJ2ZXJDQS5jcnQwDAYDVR0TAQH/ BAIwADANBgkqhkiG9w0BAQsFAAOCAQEAIuKx9nWhwJ2tOj8g4TkCm5r56XcQ2iLt lMuYNzzc84lEW6RT8HGW+WQansgjpmvDZpmEs9RzSR85ZvP18Ua/048nSzBY4AQH +IiAcVwML33dbamYDaQA8qL1Dy0xd+x2Op22P/ontmvHm4pJVrX/PYNFkJ1dWp/C 5Nvs9BcQcjRp3GljXla0S56hcI+kOFBL/kgv2TfLIv08sRqNcJylXQGjOVztZY72 a/BKU8kDgnU9yeJop6N4Mi8qbP2B8fgmxUjEjbFdYb9HNorzlMNuUbBy9nPqSUoF 3q9KZRQz99nbHGaY6S/90mS7zN4OAtdmiaf4Kpn0oRa+C8upTAXpRw== -----证书结束----- subject=/C=DE/L=Berlin/O=Packagist指挥家 UG (haftungsbeschr\xC3\xA4nkt)/CN=getcomposer.org
发行者=/C=US/O=DigiCert Inc/CN=DigiCert SHA2 安全服务器 CA
未发送客户端证书 CA 名称对等签名摘要:SHA512
服务器临时密钥:ECDH,P-256,256 位
SSL 握手已读取 3190 字节并写入 415 字节
新的,TLSv1/SSLv3,密码是ECDHE-RSA-AES128-GCM-SHA256 服务器公钥是2048位 支持安全重新协商 压缩:无 扩展:无 没有协商ALPN SSL会话:协议:TLSv1.2 密码:ECDHE-RSA-AES128-GCM-SHA256 会话ID:C8BA5ADD002CDF3BC52D3649896E2EDE4D17F8D1532C153F31804455DC058E65 会话ID-ctx:主密钥: DFBB5C35342517FF6D2B216B7470B7AF3204B9F107993E3561535D64E71B78099B6A74DC95BF42E1D2C5DF1B97012A4A Key-Arg:无 Krb5 主体:无 PSK 身份:无 PSK 身份提示:无 TLS 会话票证有效期提示:86400(秒) TLS 会话票证:0000 - 37 95 6f ff f6 4b 47 09-43 b0 94 ea 3d 39 83 d1 7.o..KG.C...=9.. 0010 - ee a7 89 41 04 c2 c2 d5-66 ab 4b 57 c2 8b 3a 4c ...A....f.KW..:L 0020 - 6b 82 e3 61 cf 44 db 4b-ac eb a8 3e ab db 4c 94 k..aDK..>..L. 0030 - fc 23 7a 6c a4 53 eb ec-ad a1 83 81 59 1a d5 25 .#zl.S......Y..% 0040 - bc 2a d3 15 e1 fa aa 48-35 96 1b 5a 21 fe c5 15 .*.....H5..Z!... 0050 - 63 af 8a 7c 76 ef 12 24-4e 5b 3c 5d 0a e4 d7 54 c..|v..$N[<]...T 0060 - e0 7e ac f9 2f 32 b0 4a-5a ec 1b 03 d6 52 d6 9d .~../2.JZ....R.. 0070 - 20 e0 f3 75 bc 2c 80 40-7e fb 26 ef 84 84 fb 64 ..u.,.@~.&....d 0080 - f7 d2 fc 6b 61 f6 b9 c8-20 15 41 20 77 bc 89 a0 ...ka... .A w... 0090 - 9f 7a e4 ab bf 30 bd 97-e3 54 50 d3 55 47 91 bd .z...0...TP.UG.. 00a0 - aa 54 20 81 62 83 e2 60-a8 54 71 11 11 8c d5 92 .T .b..`.Tq.....
Start Time: 1530325185
Timeout : 300 (sec)
验证返回代码:0(确定)
关闭