Github user RolandZink commented on the pull request:
https://github.com/apache/trafficserver/pull/194#issuecomment-105575681
With perfect forward secrecy getting the necessary keys becomes more
difficult. I made some better experience by getting the session keys from the
browsers. Some (Chrome and Firefox) support storing the session keys into a
file and Wireshark can read the file. What needs to be done is setting the
SSLKEYLOGFILE environment variable, see for example
https://jimshaver.net/2015/02/11/decrypting-tls-browser-traffic-with-wireshark-the-easy-way/.
Maybe ATS can write a similar file?
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---
