Wireshark mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Decrypt SSH

From: Michael Holt <m.iostreams () gmail com>
Date: Sun, 22 Aug 2010 07:11:06 -0700
  It looks like Diffie-Hellman was added in 2006:
http://tools.ietf.org/html/rfc4419

I got that from here:
http://en.wikipedia.org/wiki/Secure_Shell

On 8/22/2010 3:30 AM, Ricardo Mendes wrote:

Hi, thanks.

That applies for booth SSH versions, 1 and 2?

Regards

On Sat, Aug 21, 2010 at 2:32 PM, M Holt<m.iostreams () gmail com>  wrote:

SSH uses diffie-hellman to create a separate key that is used for the session.
It is different than just SSL, and just having an RSA key will not help you decrypt.

Do some google searches and you will find a number of hits on the topic.

http://en.wikipedia.org/wiki/Diffie–Hellman_key_exchange

  -- Mike

On Aug 20, 2010, at 5:02 PM, Ricardo Mendes<ricardo.amm () gmail com>  wrote:


Hi,

Can I use Wireshark to decrypt SSH traffic, with Wireshark SSL decrypt
feature, trough RSA keys?

Thanks in advance,
Ricardo Mendes
___________________________________________________________________________
Sent via:    Wireshark-users mailing list<wireshark-users () wireshark org>
Archives:    http://www.wireshark.org/lists/wireshark-users
Unsubscribe: https://wireshark.org/mailman/options/wireshark-users
             mailto:wireshark-users-request () wireshark org?subject=unsubscribe

___________________________________________________________________________
Sent via:    Wireshark-users mailing list<wireshark-users () wireshark org>
Archives:    http://www.wireshark.org/lists/wireshark-users
Unsubscribe: https://wireshark.org/mailman/options/wireshark-users
             mailto:wireshark-users-request () wireshark org?subject=unsubscribe

___________________________________________________________________________
Sent via:    Wireshark-users mailing list<wireshark-users () wireshark org>
Archives:    http://www.wireshark.org/lists/wireshark-users
Unsubscribe: https://wireshark.org/mailman/options/wireshark-users
              mailto:wireshark-users-request () wireshark org?subject=unsubscribe


___________________________________________________________________________
Sent via:    Wireshark-users mailing list <wireshark-users () wireshark org>
Archives:    http://www.wireshark.org/lists/wireshark-users
Unsubscribe: https://wireshark.org/mailman/options/wireshark-users
             mailto:wireshark-users-request () wireshark org?subject=unsubscribe
Previous By Date Next
Previous By Thread Next

Current thread: