[hm] [off-topic] Censurada una web pro-aborto en el estado español por varia ISPs

blinge blinge en riseup.net
Mar Abr 28 07:07:47 CEST 2020


On 27/4/20 20:37, Jose Legido wrote:
> Gracias por las pruebas!
> ¿Podrías probar esto?
> openssl s_client -showcerts -servername www.womenonweb.org 
> <http://www.womenonweb.org> -connect 67.213.76.19:443 
> <http://67.213.76.19:443> -prexit

openssl s_client -showcerts -servername www.womenonweb.org -connect 
67.213.76.19:443 -prexit
CONNECTED(00000003)
depth=1 C = ES, ST = Madrid, L = Madrid, O = Allot, OU = Allot, CN = 
allot.com/emailAddress=info en allot.com
verify error:num=19:self signed certificate in certificate chain
---
Certificate chain
  0 s:/CN=www.womenonweb.org
i:/C=ES/ST=Madrid/L=Madrid/O=Allot/OU=Allot/CN=allot.com/emailAddress=info en allot.com
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
  1 
s:/C=ES/ST=Madrid/L=Madrid/O=Allot/OU=Allot/CN=allot.com/emailAddress=info en allot.com
i:/C=ES/ST=Madrid/L=Madrid/O=Allot/OU=Allot/CN=allot.com/emailAddress=info en allot.com
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

---
Server certificate
subject=/CN=www.womenonweb.org
issuer=/C=ES/ST=Madrid/L=Madrid/O=Allot/OU=Allot/CN=allot.com/emailAddress=info en allot.com
---
No client certificate CA names sent
Peer signing digest: SHA512
Server Temp Key: ECDH, P-256, 256 bits
---
SSL handshake has read 2162 bytes and written 329 bytes
Verification error: self signed certificate in certificate chain
---
New, TLSv1.2, Cipher is ECDHE-ECDSA-AES256-GCM-SHA384
Server public key is 256 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
     Protocol  : TLSv1.2
     Cipher    : ECDHE-ECDSA-AES256-GCM-SHA384
     Session-ID: 
0EE848ADF8D5B6224498B24EB74836CAB5BCA220BA5ABD15B352CE4CF3B4041F
     Session-ID-ctx:
     Master-Key: 
CBCC1C994EFC5F3EE3533C09DCFB44CD659F000E3462E429990AC2B74A0180E369346693BBFB2580E08B4448C08D0677
     PSK identity: None
     PSK identity hint: None
     SRP username: None
     TLS session ticket lifetime hint: 300 (seconds)
     TLS session ticket:
     0000 - f2 c4 ca 5b a2 a7 cf b4-b0 b7 84 f7 1b d5 fb 17 ...[............
     0010 - 19 05 24 f0 3e 47 d4 d0-db 94 55 22 f2 82 7c f8 ..$.>G....U"..|.
     0020 - ed ee 78 c3 ea 7a fa 8a-7f 3e f7 bd f9 b7 aa 47 ..x..z...>.....G
     0030 - ce a4 64 7e 69 6d eb 21-59 33 49 e1 fb 09 37 c3 ..d~im.!Y3I...7.
     0040 - d5 a0 3f 41 2d 9e 45 a7-9f a1 14 40 8c d7 0d 5f ..?A-.E.... en ..._
     0050 - a4 e7 7d 05 9d 81 18 cc-a5 b0 94 91 69 42 8c 72 ..}.........iB.r
     0060 - 81 9e f1 e6 d0 1f d2 81-cf 31 26 63 b1 79 cd 44 .........1&c.y.D
     0070 - 69 d0 0f d0 08 02 0a 8f-02 ba 93 0d b8 17 d0 42 i..............B
     0080 - fe d9 52 6f ad dd 76 9e-0c f3 37 98 ac 13 fe a9 ..Ro..v...7.....
     0090 - b6 2a 7c 3c 10 43 3b 93-26 64 e3 99 20 45 96 84 .*|<.C;.&d.. E..
     00a0 - 6a ff 59 06 a0 c7 e9 10-71 e0 8d 6a 14 6b 37 13 j.Y.....q..j.k7.

     Start Time: 1588049439
     Timeout   : 7200 (sec)
     Verify return code: 19 (self signed certificate in certificate chain)
     Extended master secret: no
---



>
> Y esto:
> ssh 67.213.76.19
> El fingerprint que debería mostrar es este:
> ECDSA key fingerprint is 
> SHA256:+GrhqgUB8gR9ohRoZVEsMqf6020cFKE9QKv4JaVzHLo.


  ssh 67.213.76.19
The authenticity of host '67.213.76.19 (67.213.76.19)' can't be established.
ECDSA key fingerprint is SHA256:+GrhqgUB8gR9ohRoZVEsMqf6020cFKE9QKv4JaVzHLo.
Are you sure you want to continue connecting (yes/no)? no
Host key verification failed.

------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: </pipermail/hackmeeting/attachments/20200428/4b18c966/attachment-0001.html>


Más información sobre la lista de distribución HackMeeting