What is the best way to verify the SSL configuration of my web server?

Question

How do I ensure I have my SSL configuration setup securely?

score 12 · Accepted Answer · answered Nov 12 '10 at 00:18

12

SSL Labs rocks for verifying all the nuances of a proper SSL setup - just put your domain name in and hit submit:

https://www.ssllabs.com/

answered Nov 12 '10 at 00:18

Tate Hansen

13,714
3
40
83

score 5 · Answer 2 · answered Nov 25 '12 at 23:12

(shameless advertisement)

There are various Web-based services which can test your server (e.g. SSL Labs) but this works only if your server is generically accessible from the Internet. If you want to test a server for which this is not true, you need a tool that you can run from a desktop system. I wrote one (opensource, free). Remember, though, that such a tool can never guarantee that your server is "secure"; that's way too vague an assertion. SSL test tools (and this includes SSL Labs and its ilk) can "only" point out some things which look fishy; they cannot claim exhaustivity, and they cover only the SSL level.

What is the best way to verify the SSL configuration of my web server?

2 Answers2