sniffing SSL (was OT: mod_ssl (apache) log entries -- wtf?)

To: debian-user@lists.debian.org
Subject: sniffing SSL (was OT: mod_ssl (apache) log entries -- wtf?)
From: Vineet Kumar <debian-user@virtual.doorstop.net>
Date: Thu, 20 Feb 2003 12:45:59 -0800
Message-id: <[🔎] 20030220204559.GA62802@doorstop.net>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 20030220093902.B26752@sccs.swarthmore.edu>
References: <[🔎] 20030220075640.GA13688@mail.serensoft.com> <[🔎] 20030220093902.B26752@sccs.swarthmore.edu>

* sean finney (seanius@seanius.net) [030220 07:00]:
> you could find out for sure by running the packet sniffer of your
> choice and dumping the whole conversation to a log, and then look
> at what kind of data the client was sending.  oh wait... https...
> nevermind.  there's probably a way to turn up verbosity on apache
> then :)

Is there an easy way to decode a snarfed SSL session given that he has
the server's private key?  Theoretically it's possible, but I wonder if
any of the popular sniffing/IDS tools facilitate it.

good times,
Vineet
-- 
http://www.doorstop.net/
-- 
http://www.debian.org/

Attachment: pgpuJjX8ZYJqx.pgp
Description: PGP signature

Reply to:

Follow-Ups:
- Re: sniffing SSL (was OT: mod_ssl (apache) log entries -- wtf?)
  - From: "nate" <debian-user@aphroland.org>
- Re: sniffing SSL (was OT: mod_ssl (apache) log entries -- wtf?)
  - From: Will Trillich <will@serensoft.com>

References:
- OT: mod_ssl (apache) log entries -- wtf?
  - From: Will Trillich <will@serensoft.com>
- Re: OT: mod_ssl (apache) log entries -- wtf?
  - From: sean finney <seanius@seanius.net>

Prev by Date: Securing system (was gibraltar, apache and samba at the same machine)
Next by Date: Re: SSL Encrypiton
Previous by thread: Re: OT: mod_ssl (apache) log entries -- wtf?
Next by thread: Re: sniffing SSL (was OT: mod_ssl (apache) log entries -- wtf?)
Index(es):
- Date
- Thread