一、简介
s_time是openss提供的SSL/TLS性能测试工具,用于测试SSL/TSL服务
二、语法
openssl s_time [-connect host:port] [-www page] [-cert filename] [-key filename] [-CApath directory] [-CAfile filename] [-reuse] [-new] [-verify depth] [-nbio] [-time seconds] [-ssl2] [-ssl3] [-bugs] [-cipher cipherlist]
选项
-connect host:port - host:port to connect to (default is localhost:4433) -nbio - Run with non-blocking IO -ssl2 - Just use SSLv2 -ssl3 - Just use SSLv3 -bugs - Turn on SSL bug compatibility -new - Just time new connections -reuse - Just time connection reuse -www page - Retrieve 'page' from the site -time arg - max number of seconds to collect data, default 30 -verify arg - turn on peer certificate verification, arg == depth -cert arg - certificate file to use, PEM format assumed -key arg - RSA file to use, PEM format assumed, key is in cert file file if not specified by this option -CApath arg - PEM format directory of CA's -CAfile arg - PEM format file of CA's -trusted_first - Use trusted CA's first when building the trust chain -cipher - preferred cipher to use, play with 'openssl ciphers'
三、实例
连接一个SSL HTTP服务器并获取默认页
openssl s_time -connect localhost:2009 -key clientprikey.pem -cert client.pem -ssl3 -cipher EXP-KRB5-RC4-MD5
