Reputation: 803
Detect SSL protocol in C
I'm writing a server which is accepting incoming TCP connections and I would like to implement a simple way in C to detect if connection is SSL just inspecting few received bytes. Any help?
Upvotes: 2
Views: 1295
Answers (1)
Reputation: 4074
It is possible since the first message after the connection is established should be a "hello" message from the client. The first field in the message is the SSL/TLS version, then a timestamp follows - depending on the application layer protocol a plain client uses, this may be enough to figure out if the client connecting uses SSL/TLS or not.
See https://www.rfc-editor.org/rfc/rfc5246#section-7.4 for more details on the message structure.
Edit: here's a very similar question with an excellent answer: https://security.stackexchange.com/questions/34780/checking-client-hello-for-https-classification
Upvotes: 2
Related Questions
- determine if TCP connection uses SSL
- Read SSL and TLS data in HTTPS traffic
- How to check if a connection is SSL?
- How to distinguish between different type of packets in the same HTTPS traffic?
- Find SSL version in TCP-packets in established TCP-connection
- Check Server security protocol using openssl
- Auto-detecting if a TCP connection is using SSL / TLS?
- TLS protocol detection by using client hello message
- How can I determine whether an incoming connection is expecting SSL?
- HTTPS with Linux sockets?