Ethereal-dev: Re: [Ethereal-dev] SSL Decoding?

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

Date Index Thread Index Other Months All Mailing Lists
Date Prev Date Next Thread Prev Thread Next
From: David Frascone <dave@xxxxxxxxxxxx>
Date: Mon, 28 Jan 2002 10:38:51 -0600
On Sunday, 27 Jan 2002, Scott Renfro wrote:
> On Sun, Jan 27, 2002 at 08:53:03PM -0600, David Frascone wrote:
> >
> > 1) Since I have access to all the key files, can I somehow watch the
> >    stream, or does SSL generate the keys used for traffic on the fly,
> > and
> >    only use the .pem file keys for identity?
> 
> The Ethereal ssl dissector doesn't support this, but Eric Rescorla's
> ssldump utility does.  http://www.rtfm.com/ssldump/

That's an awesome little toy.  I've just gotten premission from the author
to integrate it's functionality into Ethereal.  Now let's see if I can 
ever find the time to do it :)

> Yes, SSLv3 and TLSv1 have NULL cipher suites.  They're disabled by
> default, but you can enable their use in many implementations.  In
> Netscape or Mozilla, see the Edit Ciphers preferences dialog.  In
> openssl, use -cipher NULL with s_client and/or s_server.

Sweet!  I got null ciphers working perfectly!  Thanks a bunch!