This thread was archived. Please ask a new question if you need help.
Where can I view the selected connection encryption algorithms/ciphers when using SSL/TLS for IMAP and SMTP?
When using Firefox I can view the session encryption algorithms by clicking on the (hopefully) green padlock, click the "More Information" button, select the "Security" icon and then view the protocol, key exchange, encryption, mode and integrity algorithms selected for the session in the "Technical Details" section.
In Thunderbird I have IMAP and SMTP configured with SSL/TLS for the connection, but I can not find information about the encryption algorithms selected for the sessions anywhere. How can I view this information?
All Replies (1)
This is what I have found:
To see the ciphers available at the server:
- Use nmap > nmap -script ssl-enum-ciphers -p 993 imap.gmail.com
- Enter imap.gmail.com:993 in High-Tech Bridge Free SSL Server Test
To see the ciphers configured in Thunderbird enter a client test site as Thunderbird Start Page (Customizing the Start Page ). Use say one of:
To find the cipher selected for a particular session:
- Download and install Wireshark
- Start Wireshark with capture filter: port 993 and host imap.gmail.com
- Enter display filter: ssl.handshake.type == 1 or ssl.handshake.type == 2
- Start Thunderbird and fetch mail.
The cipher suites offered by Thunderbird are listed in IANA notation in the Client Hello message and the selected session cipher in Server Hello (look in Wireshark).
Replace 993 and imap.gmail.com with the tcp port and server you want to check (View Settings for this account / Server Settings / Server Name: and Port.)
Unfortunately the information does not seem to be available in Thunderbird itself yet. An account padlock hover message would be fine.
Modified by JustCurious