tcpdump mailing list archives
Re: libpcap and certificates
From: "Geoffrey Sisson" <geoff () geoff co uk>
Date: Wed, 05 Oct 2011 10:37:57 -0700
Aaron Turner <synfinatic () gmail com> wrote:
Last I checked, tcpdump supports decrypting IPSec, but not SSL. However, Wireshark decrypts SSL. You'll need the SSL private key of the webserver to do it.
There's also ssldump, written by Eric Rescorla (RFC 5246 co-author):
http://www.rtfm.com/ssldump/
I used ssldump on a few projects a few years ago. N.B. the last
change in the change log is 2002, so there's a possibility of bit rot.
Geoff
-
This is the tcpdump-workers list.
Visit https://cod.sandelman.ca/ to unsubscribe.
Current thread:
- libpcap and certificates Andrej van der Zee (Oct 05)
- Re: libpcap and certificates Aaron Turner (Oct 05)
- Re: libpcap and certificates Andrej van der Zee (Oct 05)
- Re: libpcap and certificates Peter Volkov (Oct 05)
- Re: libpcap and certificates Geoffrey Sisson (Oct 05)
- Re: libpcap and certificates Geoffrey Sisson (Oct 05)
- Re: libpcap and certificates Andrej van der Zee (Oct 07)
- Re: libpcap and certificates Andrej van der Zee (Oct 05)
- Re: libpcap and certificates Aaron Turner (Oct 05)