Free ssl v3 software for linux

MatrixSSL provides an embedded SSL implementation for small footprint devices.
PeerSec MatrixSSL is an embedded SSL implementation designed for small footprint devices and applications requiring low overhead per connection. The library is less than 50K on disk with cipher suites.
It includes SSL client and SSL server support, session resumption, and implementations of RSA, 3DES, ARC4, SHA1, and MD5.
The source is well documented and contains portability layers for additional operating systems, cipher suites, and cryptography providers.
Main features:
- < 50KB total footprint with crypto provider
- SSLv3 and TLS server and client support
- Included crypto library - RSA, AES, 3DES, ARC4, SHA1, MD5
- Cipher Suites - RC4-MD5, RC4-SHA, DES-CBC3-SHA, AES128-SHA, AES256-SHA
- RSA public and private key generation
- X.509 certificate generation and signing
- Full support for fast session resumption/caching
- X.509 server and client certificate authentication
- Tight, heavily commented code in portable C
- User and developer documentation

yaSSL is an SSL Library for programmers building security functionality into their applications and devices.
yaSSL has a dual licensing model, like MySQL, so it is available under GPL and commercial licenses. Support and consulting are also available for yaSSL.
Main features:
- SSL version 3 and TLS version 1 (client and server)
- OpenSSL compatibility layer
- MySQL integration
- Initial stunnel integration
- MD2, MD5, SHA-1, RIPEMD, HMAC, DES, 3DES, AES, ARC4, TWOFISH, BLOWFISH, RSA, DSS, DH, and PKCS#5 PBKDF2
- Simple API
- Interchangeable crypto and certificate libraries
- PEM and DER certificate support
- Very fast
- Multiple OS support: Win32, Linux, Solaris, FreeBSD, NetBSD, OpenBSD, and Mac OS X
Enhancements:
- This release of contains bugfixes and adds SHA-256, SHA-512, SHA-224, and SHA-384.

ssl-cert-check is a Bourne shell script that checks the expiration status of digital certificates on SSL servers.
It supports both interactive and batch modes and easily integrates with cron. It provides custom expiration thresholds and can be configured to send email if a certificate is close to expiring.
Enhancements:
- This release contains a new "-i" option to print the certificate issuer.
- The requirement to use GNU date has been removed (the program now uses a built-in Julian date routine).
- The documentation has also been significantly updated to include numerous useful examples.

The OpenSSL Project is a collaborative effort to develop a robust, commercial-grade, full-featured, and Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols as well as a full-strength general purpose cryptography library.
OpenSSL project is managed by a worldwide community of volunteers that use the Internet to communicate, plan, and develop the OpenSSL toolkit and its related documentation.
OpenSSL is based on the excellent SSLeay library developed by Eric A. Young and Tim J. Hudson. The OpenSSL toolkit is licensed under an Apache-style licence, which basically means that you are free to get and use it for commercial and non-commercial purposes subject to some simple license conditions.
Main features:
- Creation of RSA, DH and DSA key parameters
- Creation of X.509 certificates, CSRs and CRLs
- Calculation of Message Digests
- Encryption and Decryption with Ciphers
- SSL/TLS Client and Server Tests
- Handling of S/MIME signed or encrypted mail

sslredir is a simple utility used for redirecting incoming non-SSL connections to outgoing SSL connections.

sslredir project is useful for enabling applications such as mail, news, or IRC clients, which do not support SSL, to connect to SSL servers. It also supports connecting to the remote host through a SOCKS4A proxy, so sslredir is ideal for use with Tor.

sslredir is similar to stunnel or socat, except that it is not as general-purpose as socat. It uses less than 450 lines of Python, so it is simple to audit (although it does rely on M2Crypto which relies on OpenSSL, both of which are rather more difficult to audit). sslredir is also designed to work nicely with Tor, whereas I had run into bugs with both socat and stunnel.

LFTP is sophisticated file transfer program with command line interface. LFTP supports FTP, HTTP, FISH, SFTP, HTTPS and FTPS protocols. GNU Readline library is used for input.
Every operation in lftp is reliable, that is any non-fatal error is handled and the operation is retried automatically. So if downloading breaks, it will be restarted from the point automatically. Even if ftp server does not support REST command, lftp will try to retrieve the file from the very beginning until the file is transferred completely. This is useful for dynamic-ip machines which change their IP addresses quite often, and for sites with very bad internet connectivity.
If you exit lftp when some jobs are not finished yet, lftp will move itself to nohup mode in background. The same happens when you have a real modem hangup or when you close an xterm.
lftp has shell-like command syntax allowing you to launch several commands in parallel in background (&). It is also possible to group commands within () and execute them in background. All background jobs are executed in the same single process. You can bring a foreground job to background with ^Z (c-z) and back with command `wait (or `fg which is alias to `wait). To list running jobs, use command `jobs. Some commands allow redirecting their output (cat, ls, ...) to file or via pipe to external command. Commands can be executed conditionally based on termination status of previous command (&&, ||).
Examples:
lftp> cat file | gzip > file.gz
lftp> get file &
lftp> (cd /path && get file) &
The first command retrieves file from ftp server and passes its contents to gzip which in turn stores compressed data to file.gz. Other commands show how to start commands or command groups in background.
lftp has builtin mirror which can download or update a whole directory tree. There is also reverse mirror (mirror -R) which uploads or updates a directory tree on server.
There is command `at to launch a job at specified time in current context, command `queue to queue commands for sequential execution for current server, and much more.
LFTP supports IPv6 for both FTP and HTTP protocols. For FTP protocol it uses method described in RFC2428.
Other low level stuff supported: ftp proxy, http proxy, ftp over http, opie/skey, fxp transfers, socks.
If lftp was compiled with ssl support, then it includes software developed by the OpenSSL.
Main features:
- FTP and HTTP protocols support.
- FTP (e.g. TIS FWTK) proxy support.
- HTTP proxy support.
- FTP over HTTP proxy support (hftp).
- HTTPS and FTPS protocols support using OpenSSL library.
- Automatic OPIE/SKEY support in FTP protocol.
- FXP transfers support (between two FTP servers, bypassing client machine).
- FTP listings support: unix-style, NT, EPLF.
- Automatic reconnect and retry of an operation on retriable errors or timeout.
- IPv6 support in both FTP and HTTP.
- FISH protocol support. It uses ssh with no special program on server side.
- SFTP protocol v3 and v4 support.
- HTTP/1.1 keep-alive support.
- Experimental support for SRV DNS records.
- SOCKS support (configure option).
- Modification time preservation (if server can report it).
- `reget and `reput support.
- Built-in mirror and reverse mirror (mirror -R).
- Transfer rate throttling for each connection and for all connections in sum.
- Limit for number of connections to the same site. Interruption of background transfer to do a foreground operation when the limit is reached.
- Socket options tuning: buffer size and maximum segment size.
- Job queueing.
- Job execution at specified time.
- Comprehensive scripting support.
- URL recognition in most operations.
- Readline library is used for input.
- Context sensitive completion.
- Bash-like prompt extensions.
- Launching of local shell commands.
- Suspend support.
- Bookmarks.
- Aliases.
- Saving of last directory on each site. `cd - to go there.
- Copying of files between two servers, e.g. between FTP and HTTP.
- Numerous settings which can be associated with a specific server or a group.
- Paging of remote files using external program.
- `zcat and `zmore support.
- Help for commands.
- Command history saved in a file.
- Transfer status includes rate and ETA.
- File listing cache.
- Background jobs (bash-like).
- Job output redirection to a file or to a program via pipe.
- Conditional commands depending on exit status of previous one.
- Loading of binary modules at run time (configure option).
- `pget to download a file using several connections.
- `mirror can download several files in parallel (--parallel option).
- Slots. Each slot is a separate session, switch using Meta-{1-9} or `slot command. Refer to a slot site using pseudo URL slot:name.

linux-ftpd-ssl project consists of a FTP server with SSL encryption support.

linux-ftdp-ssl is the netkit ftp server with encryption support.

ftpd-ssl replaces normal ftpd using SSL authentication and encryption.

It operates together with normal ftp. It checks if the other side is also talking SSL, if not it falls back to normal ftp protocol.

Advantages over normal ftp(d) are that your passwords and the data you send will not go in cleartext over the line, and nobody can get it with tcpdump or similar tools.

The stunnel program is designed to work as an SSL encryption wrapper between remote client and local (inetd-startable) or remote server.
Stunnel can be used to add SSL functionality to commonly used inetd daemons like POP3, POP2 and IMAP servers without any changes in the programs code.
Stunnel uses OpenSSL or SSLeay libraries for cryptography, so it supports whatever cryptographic algorithms you compiled into your library.
Enhancements:
- The new transfer() function has been well tested.
- Users of any previous version are encouraged to upgrade to this one.
- Support for encrypted passphases (broken in 4.19) was fixed.
- The amount of debug logging was reduced.
- A minor man page update was made.