Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Qualys SSL Labs also has a great online tool that allows you to quickly analyze your configuration changes [1]. Highly recommended and a great resource if you're just setting up your SSL certificate, too, to make sure you have it set correctly.

[1] https://www.ssllabs.com/ssltest/analyze.html?d=news.ycombina...



Thanks for the link. I've sent an email to our $work hosting provider with some ideas to upgrade our TLS support, among other things.


Are you aware of any similar tools for testing non-HTTP TLS services, such as IMAP or SMTP?


I've found that some of these will work with, e.g. Dovecot's IMAPS daemon, just by appending ":993" to the hostname.

Yesterday I found one that would only work on port 443, but it was a simple matter of creating two iptables rules: one to permit incoming IP packets to 443/TCP and the other to redirect them to 993/TCP.


Yes, try CheckTLS: http://www.checktls.com/

Although, ironically, their web site does not seem to use TLS properly, not enforcing encryption on login and using mixed content.


Not to my knowledge; a full testing tool for IMAP, SMTP, TLS, DKIM, and DNSSEC would have been amazing a year or so ago when I was still maintaining mail servers!




Consider applying for YC's Fall 2026 batch! Applications are open till July 27.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: