summaryrefslogtreecommitdiff
path: root/package/iptables/files/l7/ssl.pat
blob: a10589a10323fa471591d99afcde049d37e08fcd (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
# SSL and TLS - Secure Socket Layer / Transport Layer Security - RFC 2246
# Pattern attributes: good notsofast fast superset
# Protocol groups: secure ietf_proposed_standard
# Wiki: http://www.protocolinfo.org/wiki/SSL
#
# Usually runs on port 443
#
# This is a superset of validcertssl.  For it to match, it must be first.
# 
# This pattern has been tested and is believed to work well.

ssl
# Server Hello with certificate | Client Hello
# This allows SSL 3.X, which includes TLS 1.0, known internally as SSL 3.1
^(.?.?\x16\x03.*\x16\x03|.?.?\x01\x03\x01?.*\x0b)