Ethereal-dev: [Ethereal-dev] Has anyone seen TACACS+ Decryption work?

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Richard Sharpe <rsharpe@xxxxxxxxxxxxxxxxx>
Date: Wed, 28 Sep 2005 15:40:32 -0700 (PDT)
Hi,

I have been looking at TACACS+ with a view to uncovering flaws with server implementations.

I have something that generates a valid encrypted TACACS+ authen reqest, because the server code I am using logs the request (including the username I set up) and sends back a response.

However, Ethereal 0.10.12 for Mac OS X Tiger (10.4?) fails to properly decrypt the request or response, which is strange.

I looked at the md5_xor code in the packet-tacacs.c source and it looks correct and is similar to what I had to write.

Has anyone seen this actually decrypt TACACS+ packet bodies?

I wonder if the problem is with the handling of the decrypted data.

Regards
-------
Richard Sharpe, rsharpe[at]richardsharpe.com, rsharpe[at]samba.org,
sharpe[at]ethereal.com, http://www.richardsharpe.com