WebApp Sec mailing list archives

Re: Security tool for monitoring HTTPS traffic?

From: Gary Flynn <flynngn () jmu edu>
Date: Sat, 28 Feb 2004 09:56:24 -0500

lists AT dawes DOT za DOT net wrote:

The organisation is providing a service on their web server, andconsequently have a need/right to see the data in clear. Inparticular, they may wish to do multiple things with the data, such asperforming IDS, tracking users, etc, apart from providing the service.


Very good point. NIDS/NIDP, deep inspection firewalls,
network based content management and rate limiting will all
go the way of the dodo as applications increasingly all start looking
like HTTPS unless the encryption border is in the network instead
of each individual host.

Current thread:

Re: Security tool for monitoring HTTPS traffic?, (continued)
- Re: Security tool for monitoring HTTPS traffic? Thomas Chiverton (Feb 26)
- Re: Security tool for monitoring HTTPS traffic? lists AT dawes DOT za DOT net (Feb 26)
- RE: Security tool for monitoring HTTPS traffic? Altheide, Cory B. (IARC) (Feb 26)
- RE: Security tool for monitoring HTTPS traffic? John Reilly (Feb 26)
  - Re: Security tool for monitoring HTTPS traffic? dd (Feb 26)
  - RE: Security tool for monitoring HTTPS traffic? Glyn (Feb 26)
- RE: Security tool for monitoring HTTPS traffic? Satish Chandra Prasad (Feb 26)
- RE: Security tool for monitoring HTTPS traffic? John Floyd (Feb 26)
  - Re: Security tool for monitoring HTTPS traffic? Imre Kertesz (Feb 26)
    - Re: Security tool for monitoring HTTPS traffic? lists AT dawes DOT za DOT net (Feb 28)
    - Re: Security tool for monitoring HTTPS traffic? Gary Flynn (Feb 28)
- RE: Security tool for monitoring HTTPS traffic? najeeb . hatami (Feb 28)
- RE: Security tool for monitoring HTTPS traffic? Amichai Shulman (Mar 07)
- RE: Security tool for monitoring HTTPS traffic? Yoram Zahavi (Mar 10)
  - Re: Security tool for monitoring HTTPS traffic? Romain Vergniol (Mar 10)
- RE: Security tool for monitoring HTTPS traffic? David Wong (Mar 10)