I want to debug IMAPS (port 993) session at client-side, e.g. to see:
- which ciphers client offers to server to use for SSL
- which one does server chooses, or which one are exactly uses during SSL session
I only know how to get the list of ciphers server supports with nmap (nmap -Pn --script ssl-cert,ssl-enum-ciphers -p 993 imap.example.com
), but how to debug the session? I guess that tcpdump is my goal, but I only could see some encrypted traffic with tcpdumd from client side (tcpdump -lxX -s 1500 -i eth0 'port 993'
).