This is our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

I seem to be able to decrypt SSL sessions by following the http://wiki.wireshark.org/SSL HOWTO for Safari, but not for Opera or Chrome. To test this I have a very simple java server available at https://github.com/bblfish/TLS_test

I posted a bug report on this https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5423

Go and vote for that bug. It's important for the web if it is going to be secure and allow us to have https everywhere that Wireshark function well on all browsers. http://www.eff.org/deeplinks/2010/10/message-firesheep-baaaad-websites-implement

(Or let me know what I am doing wrong! :-)

asked 20 Nov '10, 09:03

bblfish's gravatar image

bblfish
6113
accept rate: 0%


I checked the Opera capture file in the bugreport and it shows that a Diffie Hellman cipher has been chosen. By the nature of the DH protocol, decryption will not work without supplying the keying material that is dynamically created. You can restrict the list of acceptable ciphers to circumvent this problem.

permanent link

answered 20 Nov '10, 09:12

SYN-bit's gravatar image

SYN-bit ♦♦
17.1k957245
accept rate: 20%

Thanks a lot SYNbit. That will help me debug my server at least.

I'll respond further on the bug report.

(20 Nov '10, 09:18) bblfish
Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:

×319
×165

question asked: 20 Nov '10, 09:03

question was seen: 9,749 times

last updated: 20 Nov '10, 11:43

p​o​w​e​r​e​d by O​S​Q​A