This is our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Hello! I'm trying to do same thing under smtp (destination port is 465) under Windows. How can i do that?

asked 29 Mar '17, 02:11

icegood's gravatar image

icegood
6112
accept rate: 0%

converted to question 29 Mar '17, 04:08

grahamb's gravatar image

grahamb ♦
19.8k330206

Converted to a question from an "answer" on this question.

(29 Mar '17, 04:09) grahamb ♦

The current Wireshark version (2.2.5) should decode SMTPS (SMTP over SSL) on port 456/TCP as SSL per default.

When your able to decode the encrypted data (e.g. with the RSA key in use or with the premaster secret) the application data should also be decoded as SMTP by default.

If your capture has not been decoded as SSL please use the „Analyze“ -> „Decode As“ feature.

permanent link

answered 29 Mar '17, 11:40

Uli's gravatar image

Uli
9031515
accept rate: 29%

edited 29 Mar '17, 11:43

Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:

×319
×25

question asked: 29 Mar '17, 02:11

question was seen: 1,384 times

last updated: 29 Mar '17, 11:43

p​o​w​e​r​e​d by O​S​Q​A