what is difference between curl , openssl and WGET ?
when to use these commands ?
as all commands basically used to test ssl on server or VIP. is ther any difference in ciphers that they used.
i read that they use some different ssl libraries. is it true ?
Hi BJ ,
what is difference between curl , openssl ?
Curl is a tool to transfer data from or to a server, using one of the supported protocols (DICT, FILE, FTP, FTPS, GOPHER, HTTP, HTTPS, IMAP, IMAPS, LDAP, LDAPS, POP3, POP3S, RTMP, RTSP, SCP, SFTP, SMB, SMBS, SMTP, SMTPS, TELNET and TFTP). The command is designed to work without user interaction.
So basically if your application server supports http ( non - encrypted) data , you can fetch or send http data to or from a server. During use of this command it allows you to manually set ciphers and test . For example. - curl -kv --sslv2 -- ciphers AES128-SHA https://10.1.1.1:443
OPENSSL - If you familiar with command line of f5 , you can use this feature to change certificates formats , generate cert etc.This is only for SSL related purposed and has limitations.
Could you please tell what is the difference between SSL ciphers that are used in openssl and curl ?
how does it decides which cipher suite to use and send to client during SSL handshake for negotiation ?
You can specify it (https://curl.haxx.se/docs/ssl-ciphers.html) to use whatever you want. Otherwise it will negotiate it with the newest version it supports and down, like a browser would.