ANNOUNCE: ssldump: an SSL protocol analyzer v 0.9b3
Version 0.9b3
http://www.rtfm.com/ssldump/
RTFM, Inc. is pleased to announce the availability of ssldump 0.9b3
ssldump is an SSLv3/TLS network protocol analyzer. It identifies TCP
connections on the chosen network interface and attempts to interpret
them as SSLv3/TLS traffic. When it identifies SSLv3/TLS traffic, it
decodes the records and displays them in a textual form to stdout. If
linked with OpenSSL and provided with the appropriate keying material,
it will also decrypt the connections and display the application data
traffic.
ssldump is completely passive and thus allows you to analyze systems
without interfering with them. You can also use it to read stored
traffic collected with tcpdump.
This release is version 0.9b3. The code quality is considered to be
late Beta. It has seen extensive testing on a number of Unix
platforms including FreeBSD, Solaris, HP/UX and Linux. It uses
autoconf and should be portable to most Unix-based systems.
We consider ssldump 0.9b3 to tbe the best version of ssldump and
recommend users upgrade as soon as possible.
SECURITY NOTE
version 0.9b3 fixes two security problems with protocol decoding.
If you run ssldump in an environment where an attacker might
be able to send you network packets, you should upgrade immediately.
CHANGES
Since 0.9b2, a number of things have changed:
Security fix: some potential over and underflows
Added support for VLANs.
Added -P flag to disable promiscuous mode.
Fixed bugs in the TCP reassembly code.
A lot of bug fixes.
See the ChangeLog for a more complete list of changes.
DOWNLOADING
The ssldump home page is at: http://www.rtfm.com/ssldump
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
